Multi-Directional Wallet Connector Apparatuses, Methods and Systems

ABSTRACT

The MULTI-DIRECTIONAL WALLET CONNECTOR APPARATUSES, METHODS AND SYSTEMS (“W-CONNECTOR”) facilitates the enrollment of payment accounts in a consumer&#39;s virtual wallet. The consumer may be logged into their payment account issuer&#39;s web site and designate one or more payment accounts for enrollment in a virtual wallet. The issuer may then share account, billing and/or other relevant information with the virtual wallet provider to facilitate the enrollment of the designated payment accounts in the virtual wallet. The W-CONNECTOR may also be configured to facilitate the creation and funding of pre-paid accounts in a consumer&#39;s virtual wallet.

This application for letters patent disclosure document describesinventive aspects directed at various novel innovations (hereinafter“disclosure”) and contains material that is subject to copyright, maskwork, and/or other intellectual property protection. The respectiveowners of such intellectual property have no objection to the facsimilereproduction of the disclosure by anyone as it appears in publishedPatent Office file/records, but otherwise reserve all rights.

PRIORITY CLAIM

This application is a continuation-in-part and claims priority under 35U.S.C. §120 to U.S. patent application Ser. No. 13/624, 779, filed Sep.21, 2012 and entitled “WALLET SERVICE ENROLLMENT PLATFORM APPARATUSES,METHODS AND SYSTEMS”, which is a continuation-in-part and claimspriority under 35 U.S.C. §120 to U.S. patent application Ser. No.13/589,053, filed Aug. 17, 2012 and entitled “WALLET SERVICE ENROLLMENTPLATFORM APPARATUSES, METHODS AND SYSTEMS,” which in turn claimspriority under 35 USC §119 to: U.S. provisional patent application Ser.No. 61/525,168 filed Aug. 18, 2011, entitled “WALLET SERVICE ENROLLMENTPLATFORM APPARATUSES, METHODS AND SYSTEMS,” attorney docket no.92US01/120270-186PV, U.S. provisional patent application Ser. No.61/537,421 filed Sep. 21, 2011, entitled “CONSUMER WALLET ENROLLMENTAPPARATUS, METHOD AND SYSTEMS,” attorney docket no. 108US01/20270-192PV;U.S. provisional patent application Ser. No. 61/588,620 filed Jan. 19,2012, entitled “CONSUMER WALLET ENROLLMENT APPARATUSES, METHODS ANDSYSTEMS,” attorney docket no. 108US02/20270-192pv1; and U.S. provisionalpatent application Ser. No. 61/668,441 filed Jul. 5, 2012, entitled“REFERENCE TRANSACTION APPARATUSES, METHODS AND SYSTEMS.” Thisapplication also claims priority under 35 USC §119 to U.S. provisionalpatent application Ser. No. 61/612, 368 filed Mar. 18, 2012, entitled“BIDIRECTIONAL WALLET CONNECT SERVICE APPARATUSES, METHODS AND SYSTEMS,”attorney docket no. 213US01/20270-228PV. The entire contents of theaforementioned applications are expressly incorporated by referenceherein.

FIELD

The present innovations are directed generally to digital wallets andmore particularly, to MULTI-DIRECTIONAL WALLET CONNECTOR APPARATUSES,METHODS AND SYSTEMS or W-CONNECTOR.

BACKGROUND

Consumers using the World Wide Web make purchases at electronic commercemerchants using credit cards. When consumers wish to make a purchase ata merchant web site they may provide an account number for futuretransactions. Accounts provided to merchants may expire.

BRIEF DESCRIPTION OF THE DRAWINGS

The accompanying appendices and/or drawings illustrate variousnon-limiting, example, innovative aspects in accordance with the presentdescriptions:

FIG. 1 shows a block diagram illustrating example service connections insome embodiments of the W-CONNECTOR;

FIG. 2 shows a block diagram illustrating example W-CONNECTORarchitecture in some embodiments of the W-CONNECTOR;

FIG. 3 shows a screen shot illustrating example account creation in someembodiments of the W-CONNECTOR;

FIG. 4 shows a screen shot illustrating example merchant account loginin some embodiments of the W-CONNECTOR;

FIG. 5 shows a screen shot illustrating example account preferencemanagement in some embodiments of the W-CONNECTOR;

FIG. 6 shows a screen shot illustrating an example cross-channelimplementation of some embodiments of the W-CONNECTOR;

FIGS. 7 a-b show user interfaces illustrating example sign-in andaccount management in some embodiments of the W-CONNECTOR;

FIGS. 8 a-b show user interfaces illustrating example sign-in andcheckout in some embodiments of the W-CONNECTOR;

FIGS. 9 a-b show data flow diagrams illustrating example bi-directionalfederation in some embodiments of the W-CONNECTOR;

FIG. 10 shows a logic flow diagram illustrating an example accountcreation and management in some embodiments of the W-CONNECTOR;

FIG. 11 shows a block diagram illustrating an example prepaid cardpersonalization in some embodiments of the W-CONNECTOR;

FIG. 12 shows a user interface illustrating an example W-CONNECTORsettings control panel in some embodiments of the W-CONNECTOR;

FIG. 12 a is an example user interface illustrating a wallet accountinterface after the enrollment of new payment account(s).

FIG. 13 a-i show example user interfaces in some embodiments of theW-CONNECTOR.

FIG. 14 shows a screenshot illustrating an example checkout containingcurrent transactions and a contract for future transactions.

FIG. 14 a is a screenshot illustrating an example login form foraccessing a W-CONNECTOR account and optionally creating a virtual walletaccount.

FIG. 14 b is a screenshot illustrating the creation of an account with amerchant and, optionally, creating a virtual wallet account.

FIG. 15 shows a screenshot illustrating an example reference transactionenrollment.

FIG. 16 shows a user interface illustrating an example embodiment of areference transaction management console.

FIG. 17 shows a block diagram depicting example reference failovertransaction behavior.

FIGS. 18-18 a shows a logic flow diagram illustrating a referencetransaction link creation.

FIG. 19 shows a user interface illustrating an example embodiment of anissuer web site containing virtual wallet enrollment elements.

FIGS. 20 a-d show a user interface illustrating an example embodiment ofa wallet service enrollment interface.

FIG. 21 shows an example wallet service enrollment data flow.

FIGS. 22 a-22 b show example wallet account enrollment data flow.

FIGS. 23 a-23 b show a logic flow diagram illustrating an example walletand card enrollment logic flow.

FIGS. 24 a-24 j show screenshot diagrams illustrating example wallet andcard enrollment.

FIG. 25 shows a block diagram illustrating example multi-directionalservice connections in some embodiments of the W-CONNECTOR;

FIGS. 26A-26C show example user interfaces in some embodiments of theW-CONNECTOR;

FIG. 27 shows a data flow diagram illustrating example multi-directionalconnections in some embodiments of the W-CONNECTOR;

FIG. 28 shows a logic flow diagram illustrating examplemulti-directional connections in some embodiments of the W-CONNECTOR;

FIGS. 29A-29G show example access privileges in some embodiments of theW-CONNECTOR;

FIGS. 30A-30B show example user interfaces illustrating W-CONNECTORconnecting wallet with issuers in some embodiments of the W-CONNECTOR;

FIGS. 31A-31I show example user interfaces and a logic flow diagramillustrating wallet overlay on mobile devices in some embodiments of theW-CONNECTOR;

FIGS. 32A-32U show exemplary embodiments of value added wallet featuresand interfaces in some embodiments of the W-CONNECTOR; and

FIG. 33 shows a block diagram illustrating embodiments of a W-CONNECTORcontroller.

The leading number of each reference number within the drawingsindicates the figure in which that reference number is introduced and/ordetailed. As such, a detailed discussion of reference number 101 wouldbe found and/or introduced in FIG. 1. Reference number 201 is introducedin FIG. 2, etc.

DETAILED DESCRIPTION

Various embodiments of the W-CONNECTOR may be configured to facilitatethe creation of a virtual wallet account. For example, a financialinstitution may already have information in their records such aspayment accounts, billing address, credit history reports and/or thelike. By providing this information to the wallet service provider, awallet account may be established on behalf of the user. In someembodiments, the information provided by the financial institution maybe sufficient itself to enable the creation of a virtual wallet account.This would be the case where the information requirements of the virtualwallet provider are such that the financial institution is able toprovide sufficient information about the user to enable creation of awallet account. In other embodiments, the information provided by thefinancial institution may only partly fulfill the informationrequirements of the virtual wallet provider, in which case the user maybe prompted for additional information before the virtual wallet iscreated.

Other embodiments of the W-CONNECTOR enable frictionless enrollment of aconsumer's payment accounts in a virtual wallet. In some embodiments,customers logged into a financial institution web site, such as anaccount issuer's web site, may desire to enroll payment accounts alreadyestablished with that financial institution in their virtual wallet. Inone embodiment, a consumer may be logged into the web site of its localbank and be able to access both a credit card and a debit cardpreviously opened with that bank. Advantageously, the issuer bank mayalready have important information about the user that may facilitatethe enrollment of the two payment accounts in a virtual wallet (e.g.,billing address, PAN number, mother's maiden name, etc.) and/or thecreation of a virtual wallet account. In one example, the consumer mayindicate to the issuer that it desires for the issuer to transmit theaccount information the issuer has on file to a virtual wallet providerin order to pre-fill information in an enrollment form that may be usedto enroll one or more payment accounts in a virtual wallet. The issuermay then share or transmit data to the wallet service provider to enablethis enrollment. In one embodiment, the user may then provide additionalinformation before the payment account is enrolled in the wallet. Inother embodiments, no additional information may be provided by the userand the payment account may be automatically enrolled in the walletafter the issuer's transmission of the data. In still other embodiments,the issuer may be a merchant bank, pre-paid account provider, anon-financial institution, or an individual (i.e., a peer-to-peerenrollment facilitation).

In some embodiments of the W-CONNECTOR, the creation of a virtual walletaccount or the enrollment of a payment account in a virtual walletaccount may be supplemented by allowing the user to create a pre-paidpayment account. In doing so, the user may fund the pre-paid accountimmediately or open the pre-paid account with no funding. In oneembodiment, the consumer desires to add an existing payment account totheir virtual wallet while logged into an issuer's web site. Theconsumer may therefore select an established account for enrollment inthe virtual wallet. Additionally, the consumer may then also be promptedto create a pre-paid account in their virtual wallet. In someembodiments, after choosing to create a pre-paid account, the consumermay then choose an account with a financial institution from which tofund their pre-paid account. Advantageously, in this example, theconsumer may also desire for the information about the pre-paid fundingsource account to be shared with the virtual wallet provider to enablethe wallet provider to simultaneously create and fund a pre-paidaccount. In other embodiments, the W-CONNECTOR may allow a walletservice provider to retain information (e.g., account number, routingnumber, billing address, and/or the like) to enable future funding ofthe pre-paid account to occur without additional sharing of data fromfinancial institution to wallet service provider. In still otherembodiments, the consumer may create a funding threshold rule that wouldindicate to the wallet service provider to re-fill or top-up thepre-paid account from a designated funding source on the occurrence of acertain event, such as low funds. In doing so, the W-CONNECTOR enables aconsumer to create a pre-paid account seamlessly while enrolling otherpayment accounts in the virtual wallet.

In other embodiments of the W-CONNECTOR, the creation of the pre-paidaccount may happen independently of a consumer's interaction with athird-party financial institution. For example, in some embodiments thevirtual wallet may be accessed through a mobile application. In thisembodiment, the wallet application on the user's mobile phone may promptthe user to establish a pre-paid account when it detects that theconsumer has just received a large credit to one of their financialaccounts. In doing so, the establishment of pre-paid accounts may beencouraged and facilitated by the W-CONNECTOR.

In some embodiments of the W-CONNECTOR, the virtual wallet accountenrollment facility may be configured to automatically retrieve an imageof the payment account being enrolled in the virtual wallet. In doingso, consumers may be presented with an image of the card representationof the payment account being enrolled. In some embodiments, this imagemay be used by the consumer to verify the authenticity of the paymentaccount being added. In other embodiments, the image may be displayed tofacilitate the selection of payment accounts for addition to the virtualwallet.

Various embodiments of the W-CONNECTOR facilitate the creation ofpersistent and re-assignable links between the consumer's virtual walletand a merchant or other entity. In some embodiments, the W-CONNECTOR mayallow the customer to link their virtual wallet to a merchant usingreference aliases that are not permanently linked to a single paymentaccount or method. In doing so, a consumer's accounts may change overtime without breaking the persistent reference links that have beencreated to various merchants. This capability may facilitate a lowfriction user experience for payment transactions. In some embodiments,the consumer may designate a reference for an account using a merchant'sweb site. In doing so, the consumer may agree to allow futuretransactions to occur without requiring future affirmative consent. Theconsumer may then manage the reference connection through a virtualwallet or web site and update the reference aliases without requiringanother visit to the merchant's web site.

Alternative embodiments of the W-CONNECTOR may also allow the consumerto create reference links between other information in their virtualwallet. For example, a consumer may desire to create a reference aliasfor an address frequently used in commerce transactions. Alternatively,the consumer may wish to create a reference alias to a name or personathat they may use in commerce. In doing so, the W-CONNECTOR may enablethe consumer to maintain a degree of privacy while still enabling lowfriction commerce transactions.

In some embodiments of the W-CONNECTOR, the consumer may agree to ordesignate certain payment options to be used in recurrent transactions.For example, the consumer may permit flexible recurring commerce,wherein future transactions from a merchant may be billed to thereference alias without further intervention from the user. In otherembodiments, the consumer may permit managed subscription commercewherein the consumer and/or merchant agrees to various terms orconditions that may govern the current and/or future referencetransactions with the consumer's virtual wallet account. For example,the consumer may designate a pre-set amount which the merchant may billthrough the reference link monthly. For example, a consumer may enrollin a “Jam of the Month” club. In one embodiment, the consumer may chooseto create a reference transaction authorization of $40.00 per month for3 varieties of jam. In another embodiment, the jams may have variableprices (such as a rare Jam for $199.00) and the consumer may authorizefull payment or partial payment with the remainder billed later througha reference transaction or alternative mechanism. Alternatively, theconsumer may agree to allow the merchant to bill a capped total amountto their virtual wallet reference account before requiring affirmativeconsent from the consumer for future transactions. For example, the usermay authorize a one year “Jam of the Month” subscription for $199.99which may prompt the user in one year to optionally renew thesubscription.

In some embodiments, the W-CONNECTOR may provide payment securityfeatures to the merchant. For example, the merchant may be givenassurances that at least one payment account may be available for agiven period of time using a reference link. Alternatively, the merchantmay be alerted when a reference link is updated or revoked by aconsumer.

In some embodiments, the W-CONNECTOR can enable the payment accountissuer to update various parts of a reference transaction link withoutthe intervention of the consumer. For example, if a consumer's cardnumber is compromised as a result of fraud, the payment account issuercan automatically issue a new account number and update any referencesusing that payment account. Additionally, a payment account issuer maychange a consumer's account type (i.e. from ‘Gold’ to ‘Platinum’) andassociate the updated account type with the reference transaction link.Advantageously, these capabilities may enable higher transactionclearance rates for consumers, merchants and payment account issuers.

In some embodiments, the W-CONNECTOR may provide enhanced securityfeatures to the consumer. For example, the consumer may be givenadditional options for restricting reference transactions if themerchant is a new merchant, located in a foreign country, has a historyof fraudulent transactions, or other conditions are present that may because for enhanced security. In alternative embodiments, the consumermay receive alerts when a transaction is posted through a referencelink. For example, the consumer may be alerted after every transaction,or only if the transaction is suspicious. In some embodiments, theconsumer may be given the option to approve or cancel the referencetransaction.

In some embodiments, the W-CONNECTOR may provide a control panel throughwhich the consumer may manage the reference account links. For example,the consumer may desire to remove a payment account from their virtualwallet and re-assign any reference connections previously using thatpayment account to instead use another payment account. In otherembodiments, a consumer may desire to simultaneously add a new paymentaccount to their virtual wallet and use the newly added account toreplace another account in their virtual wallet. In some embodiments,when a consumer deletes a payment account from their wallet they may beprompted to update any reference transaction links that use thatreference payment account. In doing so, the consumer can provideduninterrupted linkage to payment references. In still other embodiments,the consumer may be permitted to view reports regarding their historicalusage of a reference alias or any accounts linked thereto. In someembodiments, the consumer can update, edit, or revoke links betweenreference account aliases and various merchants.

Various embodiments of the W-CONNECTOR may enable the consumer to createrules governing the administration and use of reference aliases. Assuch, the consumer may be able to designate a hierarchy of paymentaccounts to be used for one reference alias in the event that somepayment accounts are not available. In other embodiments, the consumermay be able to designate alternative reference payment methods such asfrequent flyer accounts, merchant points accounts, coupons, virtualcurrencies, government benefits, future paychecks, accounts receivable,loans or lines of credit.

In some embodiments, the W-CONNECTOR may enable a merchant offering acheckout option to display a button on their web page including enhancedinformation. For example, the button may include text indicating thatthe transaction may be fulfilled using a reference alias in theconsumer's virtual wallet. Alternatively, the button may display areference address that the consumer has previously designated for use insuch transactions. In some embodiments the consumer may interact withthe button directly to change, update or view reference transactioninformation.

Various embodiments of the W-CONNECTOR facilitate a common, low frictionuser experience for consumers wishing to link a financial account, amerchant account, or any other participating commerce services to adigital wallet. In some embodiments, the W-CONNECTOR provides astandardized common user experience and control panel for allowingcustomers to view, grant and manage permissions for financialinstitutions, merchants or participating commerce-related services tointeract with their digital wallet. In other embodiments, theW-CONNECTOR eliminates the need for consumers to remember and maintainmultiple authentication passwords across many merchant, commerce andpayment domains. In yet other embodiments, the W-CONNECTOR maintains anup-to-date payment and other relevant personal data across multiplemerchants and commerce-related services. Various W-CONNECTOR embodimentsmay also solve for a usability friction for both merchants and consumersof having to authenticate twice, once to a merchant and once to walletprovider in order to conduct a wallet ecommerce transaction. UsingW-CONNECTOR, consumers may log in once either via the merchant or thewallet and conduct an ecommerce transaction.

Embodiments of the W-CONNECTOR may also facilitate storage andmanagement of customer identity and other relevant information formerchants and other commerce related services. Some W-CONNECTORembodiments may provide a faster and low friction new customerenrollment for customers who already have a wallet account. OtherW-CONNECTOR embodiments may provide consumers their own centralizedcloud-based account having a master copy of commerce-related personaland account information protected by a trusted brand. Some W-CONNECTORembodiments may provide issuers branding and/or communicationopportunities with cardholders even in shopping experiences likecard-on-file purchases.

Some embodiments of the W-CONNECTOR may provide consumers facilities foreasily and conveniently personalizing new prepaid accounts with theirissuer using previously verified personal information stored in anonline wallet, and expediting provisioning a prepaid account to adigital wallet. Once a prepaid card is connected with the wallet, theW-CONNECTOR provides the consumer an easy to remember authenticationtool to sign on to view and manage their prepaid account either at thewallet destination website/application or through limited federation tothe prepaid issuers online (or mobile) prepaid service application.

These and other embodiments of the W-CONNECTOR provide a secure andtrusted bidirectional federation with a digital wallet by instituting apermissions system that allows services certain access privileges (e.g.,read, write, transact, etc.) to the wallet only when appropriate andsubject to both systematic and customer-managed controls.

W-CONNECTOR

FIG. 1 shows a block diagram illustrating example service connections insome embodiments of the W-CONNECTOR. In one implementation, theW-CONNECTOR button 102 may be an OAuth based button that allows users tosign in and connect their wallet profile 115 a in the wallet 115 withtheir accounts at issuers 105 a, 105 b and merchants 110 a, 110 b, 110c. Once connected, a bidirectional link may be established between theservices (e.g., issuers, merchants, etc.; hereinafter “merchant”) andthe wallet with ongoing permissions explicitly agreed to by the user. Insome implementations, the bi-directional link may facilitate, forexample, updating of card information (e.g., expire date, newidentifier, increased spending limit, and/or the like) from the issuerto the corresponding card slot in the wallet, and from the wallet to themerchant. Similarly, in some other implementations, change in customerinformation initiated by the customer from a merchant interface may flowto the wallet and from the wallet to the issuer, for example. In someembodiments, W-CONNECTOR may facilitate addition of an account orpayment method and personal data to the wallet from an issuer website oran application, set up of default payment method and sharing of relevantinfo (e.g. contact and shipping information) with a merchant for anongoing billing relationship, set up of one-way identity federation witha merchant to enable a customer to log in to a merchant through thewallet, real-time API calls for merchants to be able to display richinformation about payment methods linked to customer relationship,and/or the like. In one implementation, for example, if a user providesa retailer Nordstrom with their nicknamed “personal card” and “businesscard”, Nordstrom would be able to display those nicknames and athumbnail of the issuer card-art (if provided by a connected issuer).Similarly the user could provide Nordstrom with their wallet nicknamed“home shipping address” and “work shipping address”. If later on throughthe customer wallet application or portal, the customer updates theiraddress or makes changes to their card nickname etc., those changeswould be immediately reflected next time the customer visits Nordstrombecause those accounts are connected by the W-CONNECTOR. In someimplementations, the same frame work may facilitate any sort ofcustomer-initiated unidirectional or bidirectional connection betweenthe wallet and an outside service.

In some embodiments, various service providers may leverage theW-CONNECTOR to provide a variety of services. For example, an issuerconnected to the wallet may provision card accounts to a wallet,dynamically update account status, card art, and/or the like, providereal-time balance data, publish targeted offers to customers, publishand update issuer “apps” or gadgets to the customer's wallet, and/or thelike. A merchant connected to the wallet may allow customers to quicklylink existing merchant accounts to a wallet account, allow customers toquickly create a merchant account by drawing information (withcustomer's permission) from the customer's wallet account, allowmerchants to set up open authorization, recurring billing, subscriptionbilling relationships with the customer, keep records up to date andaccess current information on file for their connected customers, showcustomers an inline display of current accounts (e.g. including cardart) for accounts liked to their merchant relationship, allow returningcustomer to login to their merchant account with through wallet loginwidget, and/or the like. A loyalty provider connected to a wallet mayadd a loyalty account to a wallet, provide real-time points/currencybalance, publish targeted rewards offers, access a loyalty accountthrough a wallet login, and/or the like. A transit authority connectedto a wallet may load or associate transit passes with the wallet, allowreturning customer to login to their transit account or purse throughthe wallet login widget, allow redemption of transit passes or ticketsfrom the wallet, and/or the like.

FIG. 2 shows a block diagram illustrating example W-CONNECTORarchitecture in some embodiments of the W-CONNECTOR. In someembodiments, the W-CONNECTOR architecture may be a cross-channel andcross-entity framework comprising widget-based authentication andpermission management between various commerce solution components andthe wallet. In one implementation, for example, various approvedcommerce services 202, issuers 204, merchants 206, and/or the like mayhave embedded a W-CONNECTOR button (e.g., 208 a, 208 b) in their nativeapplications or sites. When the button is invoked on the web or on amobile device, the button may trigger a W-CONNECTOR widget (e.g., 210,215) to either connect a new service (e.g., 202, 204, 206) to the walletor authenticate the user. A user may input username and passwordcredentials into the wallet widget (e.g., 210) to get authenticated. Theuser may have control (e.g., create, view, manage, cancel, etc.) overthe individual relationships and may configure permissions for eachservice they connect to. In one embodiment, the W-CONNECTOR may allowapproved services, issuers and merchants permissions to obtain variousinformation relating to the user and wallet such as consumer profile225, billing agreement 230, redemption 235, loyalty and rewards 240,coupons/offers 245, wish lists and stored items 250, merchantapplications/widgets 255, Value Added Resellers(VAR)/Software-as-a-service (SaaS) commerce wallet plug-ins 260,analytics 265, account or points balance information 270, payments 275,and/or the like. In one implementation for example, the W-CONNECTOR maymanage which services can connect to the wallet. In a furtherimplementation, the W-CONNECTOR may pass along information from anapproved and connected service such as a loyalty program (e.g., StarWoods Points program) to a merchant such that the merchant may providethe customer a special deal, offer or an opportunity to use or exchangepoints/currency when transacting. In one implementation, approvedcommerce services, issuers and merchants may be able to push informationrelating to any of the above to the wallet.

FIG. 3 shows a screen shot illustrating example account creation in someembodiments of the W-CONNECTOR. In one embodiment, the W-CONNECTOR mayfacilitate acceleration of an account creation with a merchant bydrawing customer data such as name, addresses, email, etc., from thewallet. Once connected, the wallet may keep the customer data up to dateand provide an easy way for the customer to sign in to the merchantaccount. For example, as shown in FIG. 3, a new customer may create anaccount with a merchant (e.g., Nordstrom) by filling out the form fields305 (e.g., first name, last name, email, password, zip/postal code,gender, email preference, and/or the like). In one implementation, allof these fields may be replaced with information from the W-CONNECTORand persistently linked to the customer's wallet profile when thecustomer opts to create an account via the W-CONNECTOR facilities of thewallet (e.g., Wallet wallet). The data entry 205 for creating an accountwith the wallet is much less with the W-CONNECTOR.

In some embodiments, the initial connection between an entity and Walletcreates a customer identifier unique to that relationship. Unlikestoring card information with a merchant, which, if compromised, couldbe used at any merchant, the customer identifier can only be used by thedesignated entity. Any other entity attempting to use another entitiesidentifier to access a customer's wallet account would be denied. Insome implementations, the merchant may use this unique identifier tomake calls to the wallet to retrieve and/or update commerce-relevant orother customer data. The customer has the option to maintain, in oneplace, address book, payment methods, and payment preferences. If thecustomer moves addresses for example, or obtains a new payment card,these changes may be remotely propagated to all the merchants they doongoing business with. In some implementations, the merchant has a setof callbacks that the merchant can invoke to the wallet in order tooffer seamless and uninterrupted service to the customer. Under theappropriate permissions, the merchant may make these calls independentlyand/or under certain triggers such as the appearance of the customerstarting a new shopping session.

FIG. 4 shows a screen shot illustrating example merchant account loginin some embodiments of the W-CONNECTOR. The W-CONNECTOR in someembodiments may facilitate expedited merchant sign in, where customerscan skip merchant's login and password 405 with the click of theW-CONNECTOR button 405 a. The one click W-CONNECTOR check-in meanscustomers log in with less friction and do not have to type, remember orforget and have to retrieve merchant passwords. The W-CONNECTOR mayreturn the merchant's customer ID (or contract ID) to the merchant, andfacilitate the customer login to the merchant account.

FIG. 5 shows a screen shot illustrating example account preferencemanagement in some embodiments of the W-CONNECTOR. The W-CONNECTOR, insome embodiments, may maintain dynamic linkage and branding for issuers,merchants and the wallet whether or not a lightbox (i.e., a paymentwidget) is used for every purchase flow. For example, in a merchant site505, under the customer account 510, information relating to orderstatus 515, account profile 520, address book 525, payment methods 530,and/or the like may be displayed. The merchant may have their own set ofcustomer information (e.g., order information or size information) thatthey maintain in their customer database. However, other informationsuch as primary shipping address and payment methods may be dynamicallylinked and synced to W-CONNECTOR such that the merchant has access tothe customer's preferred shipping address and payment methods. Forexample, address book 525 may display the default shipping address andthe payment methods 530 may display a list of payment methods that arestored with the merchant for faster checkout. Using callbacks, theW-CONNECTOR may obtain not only payment methods and addresses, but alsoloyalty accounts, payment authorizations, entitlements, paymentpreferences, and/or the like.

In one implementation, each callback may include the customer ID that isunique to the customer-merchant relationship. In a furtherimplementation, API calls to the W-CONNECTOR may include one or more APIkeys such as a public key and/or a shared secret key. An API key may bea string value that identifies the general API access configuration andsettings for the site. In some embodiments, callbacks for W-CONNECTORmay include, without limitation, the following:

TABLE 1 Example Callbacks Get Payment methods (returns card nicknames,brand and last 4 digits) Get addresses (returns full addresses thatcustomer has shared with merchant, address nickname, and indicator fordefault/primary address) Get Loyalty accounts (returns active loyaltyprograms that customer has shared with merchant, program names andindicator for current default/primary loyalty program) Make Paymentauthorizations (request to instantiate a purchase against the customerID) Get/Add Entitlements (retrieve and redeem previous purchase recordsfor the customer, e.g. tickets, passes, pre-paid purchases, subscriptioncodes, or other product codes defined by the merchant) Get Paymentpreferences (e.g. receipting preferences and preferred shippingcarriers)

Various methods of callbacks may be utilized. In some embodiments of theW-CONNECTOR, API and inline widget methods, among others, may beimplemented. Using the API method, the merchant server may make APIcalls to the V-Connect server to retrieve customer data. For example, acustomer may log in to a merchant account to view their accountpreferences with the merchant. The merchant server may execute an APIcall to get payment methods from the W-CONNECTOR server. The merchantmay then display the currently active payment method is a wallet (e.g.,Wallet wallet) with account nickname and ending in digits xxxx. Forexample, referring to FIG. 5, the merchant may obtain payment methods530 a and 530 b from W-CONNECTOR and display them using their nicknamessuch as “My Business Credit Card PaymentCard Ending . . . 1234” (e.g.,530 a) and “My Personal Debit Card PaymentCard Ending . . . 1234” (e.g.,530 b). In this way, via API calls, the merchant may display rich, up todate account information including card art.

Using the inline widget method, the merchant may display a walletrendered “window” into a user's wallet account. Inline widgets maydisplay rendered or interactive elements that are injected into themerchant's website. An example would be a widget that displays thenickname and associated card-art for payment methods stored on file witha merchant, similar to 530 a, 530 b shown in FIG. 5. A JAVASCRIPT callfrom the merchant may indicate the type, parameters, and customer ID forrendering the widget.

Referring again to FIG. 5, a customer may also edit payment methods andother information in the wallet via the W-CONNECTOR button 535. Usingthe edit option, the customer may add, modify, delete, link/delinkaccounts and addresses, and, at a glance, confirm any new card theyadded to their wallet account last week is active with the merchant andtheir bill may process correctly.

FIG. 6 shows a screen shot illustrating an example cross-channelimplementation of some embodiments of the W-CONNECTOR. In oneimplementation, the W-CONNECTOR button may be embedded in variouschannels including, for example, web sites, mobile devices, tablets,smart phones, web applications, mobile device application, and/or thelike, as long as partners using the channels are enrolled in theW-CONNECTOR, and in some implementations, agreed to access controlrestrictions. Referring to FIG. 6, a W-CONNECTOR button 610 is placed ina tablet channel 605. Invoking the W-CONNECTOR button may trigger awallet widget to either authenticate the customer or authenticate andconnect the service, merchant, or application to the customer's walletaccount. In some embodiments, the W-CONNECTOR button may be implementedin other channels and physical world scenarios such as point of saleinteractions. For example, using a physical card swipe or chin/pininteraction may trigger a wallet account connection or login. As anotherexample, using a quick response (QR) code scan, a near-fieldcommunication (NFC) tap or other mobile trigger in lieu of a W-CONNECTORbutton may also trigger a wallet connection or login. As yet anotherexample, using a voice password, repeatable gestures or action,biometrics, and/or the like may trigger a wallet connection or login.

FIGS. 7 a-b show user interfaces illustrating example sign-in andaccount management in some embodiments of the W-CONNECTOR. Referring toFIG. 7 a, in one implementation, a customer may launch a merchant site705 and select the create account option 705 a. Selection of the createaccount option may direct the customer to a merchant account creationpage 710 in the merchant site 705. The customer may register for amerchant account by filling out the form 710 a. Alternately, thecustomer may register a merchant account with the wallet account usingthe connect with wallet button 710 b. When the connect with walletbutton is selected, a wallet widget 715 may be launched within themerchant site 705. The customer may enter their wallet username andpassword (or other credentials) to gain access to the wallet widgetconfiguration page 715 a shown in FIG. 7 b. Referring to FIG. 7 a, insome implementations, the customer may already have a merchant account.The customer may enter their merchant site account credentials 720 andlogin to the merchant site page 725. The customer may, at this point,connect to the wallet by selecting the connect with wallet now button725 a which may launch the wallet widget 715.

Referring to FIG. 7 b, the customer may configure merchant linkage tothe wallet starting with option 715 a for example. In oneimplementation, the customer may select preferences 720 for the merchantaccount in a more granular manner. For example, the customer mayspecify, for example, payment methods and shipping addresses to link tothe merchant. Other preference management is discussed in further detailwith respect to FIG. 12. Upon completing the preferences set up, thecustomer may select the connect button 720 a to create the link betweenthe merchant and the wallet. The wallet widget may then direct thecustomer to the merchant site 725. The wallet may also share or load ordynamically inject to the merchant site information according to thecustomer preferences. The merchant site 725 may obtain the sharedinformation and display the shared payment methods, address, and otherinformation 725 a to the customer to confirm the connection between themerchant account and the wallet.

FIGS. 8 a-b show user interfaces illustrating example sign-in andcheckout in some embodiments of the W-CONNECTOR. Referring to FIG. 8 a,in one implementation, a customer may launch a merchant site 805 (ormerchant application). Using the merchant sign in 805 option, thecustomer may be directed to a sign in page in the merchant site 805,where the customer may login to the merchant site using username andpassword 810 a for the merchant site. Alternately, the customer maylogin with the wallet using the login with wallet button 810 b. When thelogin with wallet button is selected, a wallet widget 815 may belaunched within the merchant site 805. The customer may provide walletusername and password 815 a to login to the merchant site via thewallet. Referring to FIG. 8 b, once the customer is authenticated viathe wallet, the wallet may send the merchant the customer IDcorresponding to the relationship between the customer and the merchant.The merchant, upon receiving the customer ID, and verifying that thecustomer ID corresponds to a customer record in their customer database,may allow the customer access to their merchant account 820. In oneimplementation, the customer sign in may be a trigger for the merchantto make an API/JAVASCRIPT call 855 to the wallet service 850 to obtainshipping details 825 b, payment method 825 c, and/or the like. Themerchant site page 825 may use the shipping detail obtained from thewallet to calculate and display shipping and tax information. In oneimplementation, the payment method 825 c obtained from the wallet may bea payment method nickname (e.g., my personal account). The merchant maynot have the actual card or account number. The actual card or accountnumber is resolved by the wallet once the customer selects the pay nowwith wallet button 835. In one implementation, the customer may alsoedit shipping address, payment method and other details directly fromthe merchant site using the edit with wallet button 830. Upon successfultransaction authorization, the merchant site 805 may display the page840, including information such as receipt 840 a relating to thetransaction.

FIGS. 9 a-b show data flow diagrams illustrating example bi-directionalfederation in some embodiments of the W-CONNECTOR. Referring to FIG. 9a, in one implementation, a user 902 may input login credentials (e.g.,merchant account or wallet account username and password) at themerchant site or application on their client device 904 at 912. Theclient device may take the login credentials and generate anauthentication request 914 for transmission to a merchant server 906.For example, the client may provide a (Secure) Hypertext TransferProtocol (“HTTP(S)”) POST message including data formatted according tothe eXtensible Markup Language (“XML”). An example authenticationrequest 914, substantially in the form of a HTTP(S) POST messageincluding XML-formatted data, is provided below:

  POST /authrequest.php HTTP/1.1 Host: www.merchant.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <auth_request>  <timestamp>2013-02-22 15:22:43</timestamp> <user_details>   <user_name>JDoe@gmail.com</user_name>  <password>Tomcat123</password>  </user_details>  <client_details>  <client_IP>192.168.23.233</client_IP>  <client_type>smartphone</client_type>   <client_model>HTCHero</client_model>   <OS>Android 2.2</OS>  <app_installed_flag>true</app_installed_flag>  </client_detail></auth_request>

The merchant server 906 may receive the authentication request 914, andmay parse the request to obtain user and/or client details such asusername and password. The merchant server may perform authentication ofthe user and/or client details at 916. In one implementation, themerchant server may query its user/customer database to verify that theusername and the password (or other credentials) are correct, and theuser is authorized to access the account with the merchant (i.e.,merchant account).

In another implementation, the user credentials may be authenticated bythe wallet server 908. The user may select sign in with wallet buttonand may input wallet credentials in the wallet widget launched. Theclient 904 may generate an authentication request 918 using the userprovided login credentials. An example wallet authentication request918, substantially in the form of a HTTP(S) POST message includingXML-formatted data, is provided below:

  POST /authrequest.php HTTP/1.1 Host: www.wallet.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <auth_request>  <timestamp>2013-02-22 15:22:43</timestamp> <user_details>   <user_name>JDoe1984</user_name>  <password>thistryion56</password>  </user_details>  <widget_param>  <apikey>aK2Lejj89J2A1_lOn4s2</apikey>  </widget_param> <client_details>   <client_IP>192.168.23.233</client_IP>  <client_type>smartphone</client_type>   <client_model>HTCHero</client_model>   <OS>Android 2.2</OS>  <app_installed_flag>true</app_installed_flag>  </client_detail></auth_request>

At 920, the wallet server may authenticate the user. In oneimplementation, OAuth protocol may be utilized to authenticate the useron behalf of the merchant. In one implementation, the wallet server mayuse the username and/or password, one or more widget parameters such asAPI key in the authorization request 918 b, and/or the like to obtain acustomer ID associated with the user/customer and the merchant. Thewallet server may send the customer ID in an authorization response 924to the merchant. In one implementation, the authorization response 924may be a back-end notification message sent from the wallet server tothe merchant. An example notification message in POST method in XMLformat is provided below:

  <?XML version = “1.0” encoding = “UTF-8”?> <notification-auth> <timestamp>2013-02-22 15:22:43</timestamp> <customer_ID>56470898786687</customer_ID> <apikey>aK2Lejj89j2A1_lOn4s2</apikey> </notification-auth>

The merchant server may receive the customer ID in the authorizationresponse message 924, and query their database to confirm that thecustomer ID matches a customer record in their customer database. Uponverification or successful authentication at 916, the merchant servermay send an authentication response 922 to the client 904. Theauthentication response, in one implementation, may be the requested webpage that is rendered by the client 904 and displayed to the user at938.

In one implementation, the merchant server may use the user sign as atrigger to request current user information from the wallet server. Themerchant server may generate and send a user information request message926 to the wallet server. The user information request message 926 mayinclude, without limitation, the customer ID that is unique to thecustomer and the merchant relationship, a token, an API key, a digitalcertificate, and/or the like. In one implementation, the token may begenerated using one or more parameters such as the merchant's API key,customer ID, merchant ID, merchant name, customer name, and/or the like.In a further implementation, the token may be encrypted. In oneimplementation, the token may be a string that is created by the MD5Message Digest algorithm hash of one or more of the parameters listedabove. In one implementation, the merchant server may utilize callbacksvia APIs, inline widgets, etc., to pull user information from thewallet. For example, the merchant server may call the getPayment API toobtain payment method details such as card nicknames, brand, last 4digits, etc. An exemplary GET request method for making the call isprovided below.

http://server1.vwallet.com/wallet/api/getPayment?callid=100008&callno=1&apikey=aK2Lejj89j2A1_lOn4s2&token=u:c6a5941420cf67578986abe8e09a8299&customerid=56470898786687

The wallet server may obtain the request 926 and may parse the requestat 928. In one implementation, the wallet server may validate therequest by confirming the customer ID, API key and/or the token arecorrect. At 930, the wallet server may use the customer ID, for example,to query one or more databases (e.g., customer profile database 910) foruser records. The wallet server may retrieve the user record,preferences, and/or permissions 932 from the customer profile database.In one implementation, the wallet server may use the associatedpreferences and permissions specified by the user to determine paymentmethods that the user has approved for sharing with the merchant. Thewallet server may then generate the user information response message934 for transmission to the merchant. An example response message 934substantially in the form of a HTTP(S) POST message includingXML-formatted data, is provided below:

  <?XML version = “1.0” encoding = “UTF-8”?> <payment_methods> <timestamp>2013-02-22 15:22:43</timestamp> <customer_ID>56470898786687</customer_ID>  <call_ID>3</call_ID> <card1_details>   <nickname>My personal card</nickname>  <brand>Visa</brand>   <digits>4554</digits>  </card1_details> <card2_details>   <nickname>My cashback card</nickname>  <brand>Visa</brand>   <digits>4557</digits>  </card2_details> <card3_details>   <nickname>My prepaid card</nickname>  <brand>Amex</brand>   <digits>5555</digits>  </card3_details></payment_methods>

The merchant server may receive the response message 934, and may sendthe shared user information message 936 to the client, which renders thereceived message to display the current user information to the user at928. Although only getPayment API call is discussed in detail, other APIcalls such as those listed in Table 1 may also be called by the merchantserver to obtain information including address nick name, indicator fordefault/primary address, active loyalty programs, program names,indicator for current/primary loyalty program, request to instantiate apurchase against the customer ID, retrieve and redeem previous purchaserecords for the customer, and/or the like. In an alternateimplementation, instead of the merchant making the API calls to obtainthe user information, the wallet server may push user information to themerchant. In some implementations, the information push may be aone-time event, for example, when the user connects a new service (e.g.,a merchant) to a wallet. In other implementations, the information pushmay be triggered by events such as the user signing in to a serviceaccount via the wallet.

Referring to FIG. 9 b, in one implementation, the user may input newinformation to their merchant account. For example, the user may add anew shipping address to their merchant account. The client may take theuser input and package it as an add new information request 952 to themerchant server. An example add new information request 952,substantially in the form of a HTTP(S) POST message includingXML-formatted data, is provided below:

  POST /addnewinfo.php HTTP/1.1 Host: www.merchant.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <auth_request>  <timestamp>2013-02-22 15:22:43</timestamp> <user_details>   <user_name>JDoe@gmail.com</user_name>  <password>Tomcat123</password>  </user details>  <new_info>  <shipping_address>    <street_name>400 Turtle bay road</street_name>   <apt_unit>6H</apt_unit>    <city>New York</city>   <zipcode>10086</zip_code>   </shipping_address>  </new_info> <client_details>   <client_IP>192.168.23.233</client_IP>  <client_type>smartphone</client_type>   <client_model>HTCHero</client_model>   <OS>Android 2.2</OS>  <app_installed_flag>true</app_installed_flag>  </client_detail></auth_request>

In one implementation, after receiving the new information request 952,the merchant server may parse the message, and retrieve the user recordfrom the one or more databases and/or tables (e.g., customer profiledatabase 909). The merchant server may then update the user record andstore the updated user record 954 to the customer profile database 909.An exemplary listing, written substantially in the form of PHP/SQLcommands, to update the user record 954 in the customer profiledatabase, is provided below:

<?PHP header(‘Content-Type: text/plain’); // store input data in adatabase mysql_connect(“201.408.185.132”,$DBserver,$password); // accessdatabase server mysql_select(“Customer_Profile_DB.SQL”); // selectdatabase to append mysql_query(“UPDATE UserTable SET street_name = ‘400Turtle bay road’ , apt_unit = ‘6H’, city = ‘New York’, zip_code =‘10086’ timestamp = ‘2013-02-22 15:22:43’ WHERE username =‘JDoe@gmail.com’”); mysql_close(“CSF_DB.SQL”); // close connection todatabase ?>

In one implementation, the merchant may send the new user informationmessage 956 to the wallet server. An example new user informationmessage 956, substantially in the form of a HTTP(S) POST messageincluding XML-formatted data, is provided below:

  POST /addnewinfo.php HTTP/1.1 Host: www.vwallet.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <add_newinfo>  <timestamp>2013-02-22 15:22:43</timestamp> <apikey>aK2Lejj89J2A1_lOn4s2</apikey> <token>u:c6a5941420cf67578986abe8e09a8299</token> <customer_ID>56470898786687</customer_ID>  <new_info>  <shipping_address>    <street_name>400 Turtle bay road</street_name>   <apt_unit>6H</apt_unit>    <city>New York</city>   <zip_code>10086</zip_code>   </shipping_address>  </new_info></add_newinfo>

The wallet server may receive the new user information message 956 fromthe merchant, along with customer ID. The wallet server may parse thereceived information at 958. Using the customer ID extracted from thereceived information, the wallet server may query one or more customerprofile databases at 960. At 962, the server may obtain query results.In one implementation, the query may be performed to determine whetherthe field of new user information is a field that is permitted forupdating using information from the merchant source. For example, in oneimplementation, shipping information may not be a field that ispermitted for updating based on information from the connected servicesuch as the merchant while other information such as a new telephonenumber received from the merchant may be used to update the customerrecord in the database (e.g., 910). Such permissions for adding,removing, changing, updating, etc., information to and from the walletmay be specified by the user via the permission control panel discussedin detail with respect to FIG. 12. In some other implementations,whether information flowing from the merchant to the wallet server canbe accepted by the wallet server, and used to update the customerrecords, may depend on the merchant trust level, how critical the updateor change is (e.g., changing a payment method versus changing atelephone number), and/or the like. At 966, depending on whether it isappropriate to update the customer record, the wallet server may or maynot update the record. At 970, the wallet server may send a confirmationmessage to the merchant server to confirm whether the new informationwas accepted, and the current information that is on the records in thewallet. At 972, the merchant server may send the client a confirmationmessage whether the update was successful or not. The client may displaythe confirmation message at 974. In one implementation, the walletserver may directly communicate with the user (e.g., via email, SMS,MMS, phone, etc.,) at 968 and solicit and/or provide confirmation of theaddition of the new information.

FIG. 10 shows a logic flow diagram illustrating an example accountcreation and management in some embodiments of the W-CONNECTOR. In oneimplementation, at 1005, if a customer has an existing merchant account,the customer may login using merchant account credentials 1010.Alternately, the customer may login using their wallet accountcredentials 1015. If the customer selects login via the wallet, a walletwidget may be provided at 1020 for the customer to enter their walletcredentials. At 1025, if the customer does not wish to connect theirwallet to their merchant account, the merchant may use the customer'sinformation on file or solicit information from the customer to completea transaction at 1030. On the other hand, if the customer requestsconnection between the merchant account and the wallet account, and thecustomer is already authenticated by the wallet at 1035, the customermay set preferences and permissions at 1045. If the customer has notbeen authenticated, a wallet widget may be launched to obtain walletcredentials from the user for authentication at 1040. At 1050, thewallet may create a customer ID as a record of the relationship betweenthe customer and the merchant, and the associated preferences andpermissions. The customer ID may be sent to the merchant. Using thecustomer ID and/or API keys or tokens, the merchant may request customerinformation such as shipping address, payment method, and/or the like at1055. The wallet may provide the merchant the information that ispermitted for sharing by the customer preferences and permissions. At1060, the merchant may use the information from the wallet to conduct atransaction. In one implementation, the transaction may be via thewallet. In another implementation, the transaction may be via a lightboxwidget rendered within the merchant site.

In one implementation, if there is no existing merchant account asdetermined at 1005, the customer may create a new merchant account. Inone implementation, the customer may create a new merchant account viathe merchant 1065 where the user may fill out a form with fields forname, address, email, username, password, and/or the like at 1075. At1080, the merchant may use the customer provided information to create anew account for the customer and the decision may move to 1025. If, onthe other hand, the customer selects an option to create a new merchantaccount via the wallet 1070, the W-CONNECTOR may determine whether thecustomer has an existing wallet account at 1085. If the customer doesnot have a wallet account, the W-CONNECTOR may request the user tocreate a wallet account at 1090. Once there is an existing walletaccount, the W-CONNECTOR may obtain customer wallet credentials, and mayauthenticate the user at 1092. At 1094, the W-CONNECTOR may obtainpreferences and/or permissions for the merchant account. At 1096, theW-CONNECTOR may create a customer ID that establishes the relationshipbetween the merchant and the customer. In one implementation, theW-CONNECTOR may store the preferences and/or permissions along with thecustomer ID in its customer database. At 1098, the W-CONNECTOR mayprovide user information allowed by the preferences and permissions tothe merchant along with the customer ID. At 1062, the merchant mayreceive the provided information and may create a merchant account forthe customer. At 1060, the merchant may use the wallet providedinformation to transact with the customer.

In some embodiments, the W-CONNECTOR framework may be leveraged forprepaid card provisioning and personalization. An online wallet servicesuch as Wallet by Payment may store consumer information for a number ofpurposed including for expediting online shopping and checkout.Cardholder information (such as name, account number, contactinformation, billing and shipping addresses etc.) flows originally froman issuer through a provisioning process to the wallet and then byinstruction of the consumer to a merchant at the time of checkout. Someembodiments of the W-CONNECTOR entail reversing the flow of information,such that an online wallet may provision account information with anissuer and at the same time link the account records at the wallet withthe account records of the prepaid issuer.

FIG. 11 shows a block diagram illustrating an example prepaid cardpersonalization in some embodiments of the W-CONNECTOR. In oneimplementation, a consumer having a wallet account may obtain a new giftcard (open loop or closed loop) or a reloadable prepaid card 1130. Theconsumer may personalize the card for online or offline usage and beable to view and service the account with the issuer. In oneimplementation, through the issuer's online or mobile service channel1105, the consumer may click a W-CONNECTOR button 1110. In a furtherimplementation, the W-CONNECTOR button may spawn a modal widget 1115powered by the wallet. The consumer may authenticate to the wallet andmay confirm their wish to personalize the new card and share thepersonalization information with the issuer. In one implementation, thepersonalization information may include information from the consumerprofile in the wallet's central consumer profile database 1125 such asname, contact information, billing address, shipping address, cardnickname, and/or the like. The wallet, upon receiving confirmation fromthe consumer, may share the consumer's personalization information withthe issuer's prepaid platform service 1105. The prepaid card may then beloaded and stored in the consumer's wallet profile. In oneimplementation, once the prepaid card is linked to the wallet, theconsumer may log in to the issuer's prepaid service using their walletcredentials (saving them having to remember additional usernames andpasswords for every prepaid account). In a further implementation, theW-CONNECTOR provides an option for prepaid platforms to integrate allprepaid card management and services directly into wallet platform. Insome implementations, APIs for the wallet platform may be available toquery current available balances and transaction history from issuercards linked to the wallet service.

FIG. 12 shows a user interface illustrating an example W-CONNECTORsettings control panel in some embodiments of the W-CONNECTOR. TheW-CONNECTOR control panel may provide common customer experiences acrossdifferent parties that are connected via the W-CONNECTOR facilities tothe wallet. Using the W-CONNECTOR control panel, the customer may managepermissions and preferences for all parties connected to the wallet andestablish a set of flexible standards to define which parties can read,write, update/modify or publish what customer profile information, whichparties can execute transaction against the wallet account, or injectplug-ins and widgets to the wallet, and/or the like. Customers,including those who are concerned about how much data they should trustwith various parties they do business with or use their services, mayleverage the framework of the W-CONNECTOR control panel to manage theiridentities and payments at various service providers such as merchants,utility providers, loyalty providers, money transfer services, and anyother service providers (“merchants”). The components of thepermissions/settings control panel may enforce terms of connectionrelations. For example all API calls by the service may be validatedagainst the permissions and business rules expressly agreed to by thecustomer.

In one implementation, the W-CONNECTOR control panel may include severalpanels such as service providers 1205, payment methods 1210, shippingaddress 1215, share 1220, permissions 1225, and/or the like. The serviceproviders may include, without limitation, any party that a customer maydo business with. The customer may have an identity, paymentrelationship, etc., established with such parties. The customer mayselect any one, multiple or all of the service providers 1205 a-j forindividual or group preference and permission management. In oneimplementation, the customer may select the merchant NORDSTROM 1205 c.The customer may then configure each of the payment methods, shippingaddresses, share, and permissions for the selected merchant 1205 c. Thepayment methods panel 1210 may list one or more payment methods 1210 a-dthat are present in the wallet. The panel 1210 may display an image ofthe card (e.g., from the issuer), a nickname for the card, cardidentifier, card brand, and/or the like. The payment methods may alsoinclude bank or other financial accounts, debit cards, credit cards,prepaid cards, gift cards, and/or the like. In some implementations, thecustomer may also add new card to the wallet directly from the controlpanel interface. The customer may select one or more of these paymentmethods for sharing with the merchant 1205 c. When the wallet providesthe shared payment method to the selected service provider, only selectinformation such as the nickname, brand, and last four digits of thecard number, etc., may be shared. In some implementations, the actualcard or account number may not be shared with the service provider.

The customer, using the permissions panel 1225, may authorize theservice provider to execute transactions (option 1225 a) against thewallet using the selected payment methods. In some implementations, thecustomer may also set up, using the permissions panel 1225, recurringbilling authorization 1225 c, subscription payments 1225 d, and/or thelike. For example, at the end of a month, a merchant (e.g., AT&T) mayrequest authorization from the wallet to bill a monthly charge amount(e.g., $120.55) against the standing instructions for a “default”payment method by a customer having a customer ID. The wallet may bestoring the standing payment instructions for “default” payment methodin slot 1 of the wallet and a back up payment method in slot 2 of thewallet. The wallet may map slot 1 to an actual payment method andauthorize billing using the actual payment method, without the merchantknowing the actual payment method. In one implementation, depending onthe merchant request, a tiered authentication may be employed to morerigorously authenticate the merchant/customer. For example, a merchantthat usually transacts against the primary card and primary shippingaddress may request to execute a transaction against another shippingaddress (e.g., grandma's address). Such a request may then cause thewallet to step up the authentication protocol (e.g., get customerconfirmation, request digital certification, etc.) to ensure that thetransaction being executed is not a fraudulent transaction.

In one embodiment, the W-CONNECTOR may leverage its facilities todetermine liability for transactions that happen based on trustrelationships. For example, depending upon whether the merchant tries tobill the customer with or without popping up an extra widget to log oncould affect the liability for the transaction. Using TSM (trustedservice manager) protocols where a secure key from a issuer is passed toput on a phone or other client device, so that the wallet knows a securekey from the issuer was present during the transaction, may also preventfraud and affect the liability for the transaction. Similar trustrelationship could also be used for liabilities relating to changerequests, for card not present transactions, and/or the like.

In some implementations, the customer may set up shipping addresspreferences for the service provider. The shipping address panel 1215may display a list of shipping addresses 1215 a-1215 c stored in thecustomer profile with the wallet. Each of the shipping addresses may benick named. The customer may select one or more of the shippingaddresses for sharing with the merchant, and may add another address1215 d to the wallet directly from the shipping address panel 1215. Insome implementations, the customer may allow shipping address to be afield which the service provider may have write access to by configuringthe allow write access option 1215 e. Such authorization for writeaccess to the shipping address field of the customer profile record inthe wallet's customer database may allow any changes the customer maymake to the shipping information from the service provider interface topropagate to the wallet. Such a bi-directional flow of information mayensure true syncing of user information across various service providersand the wallet. In some implementations, the customer may configure,using the permissions panel 1225, that any profile changes may beconfirmed with the customer (option 1225 b). The wallet, in such a case,may send the customer a request to review and/or confirm the profilechange, and may update its customer profile upon explicit approval fromthe customer.

In some implementations, the control panel's share panel 1220 maydisplay a list of information fields that may be shared by the customerwith the service provider. Examples of the fields of informationinclude, without limitation, name 1220 a, primary email address 1220 b,work email address 1220C, information for account creation 1220 d,loyalty programs 1220 e, specific loyalty programs 122 of, wish lists1220 g, points balance 1220 h, and/or the like. In one implementation,one or more of these fields may be configured for write access 1220 i.Using the permissions panel 1225, the customer may further configurewhether the service provider is allowed to execute transactions againstthe wallet 1225 a, authorized to bill the customer 1225 c, authorizedthe wallet to make/bill for subscription payments 1225 d, requireconfirmation before modifying the customer profile 1225 b, and/or thelike. Various other permissions and panels for configuring and managingcustomer information federation are within the scope of the embodimentsof the W-CONNECTOR.

FIG. 12 a is an example embodiment of a W-CONNECTOR configured todisplay a success confirmation 1226 screen after the enrollment of newpayment cards 1228, 1229 in a virtual wallet account. In someembodiments, the wallet account may already been established and containcards previously added 1227.

FIG. 13 a-i show example user interfaces in some embodiments of theW-CONNECTOR.

FIG. 14 shows an exemplary screenshot depicting a merchant checkoutsystem. In one embodiment, the W-CONNECTOR may facilitate theadministration of payments to merchants that contain a currenttransaction 1401 and a future transaction 1402. In some embodiments, themerchant may place a button 1403 on their web page that may facilitatethe creation of a reference account link. The button may, in someembodiments, contain information from the available referencetransaction links previously created by the consumer. For example, thebutton may designate which reference account may be used for thetransaction. In another example, the button may designate a referencefor a shipping address to be used for the transaction or a persona thatthe user may wish to engage in the transaction using. Other embodimentsmay contain any manner of consumer information that may be subject tochange over time.

FIG. 14 a shows an exemplary screenshot depicting an inline login foraccessing a consumer's W-CONNECTOR account 1404. In some embodiments, auser may log in using their email address and a password 1406. In otherembodiments, the user may optionally choose to create a virtual walletaccount 1405 to facilitate future transactions with the current or othermerchants.

FIG. 14 b shows an exemplary screenshot depicting a merchant accountcreation screen facilitated by the W-CONNECTOR. In this and otherembodiments, the consumer may choose to create an account 1410 with themerchant and provide contact/shipping information 1407 and/or paymentinformation 1408 to complete the transaction. Optionally, the consumermay choose to simultaneously create a virtual wallet account 1409 tofacilitate future transactions with either the current merchant or othermerchants.

FIG. 15 shows an example enrollment lightbox for creating a W-CONNECTORlink between a user's virtual wallet and a merchant. In someembodiments, the enrollment form may contain details about thetransactions authorized 1502. The transactions may be one-timetransactions, periodic transactions, recurring transactions, or anycombination thereof. Additional terms may be included or associated withthe reference transaction link. For example, some reference transactionlinks may have expiration dates, frequency caps, amount caps, alertrequirements, heightened security requirements, or other desiredlimitations. In some embodiments, the user may be prompted to agree tothe requirements for the current or future transactions. A consumer maydesignate a payment account reference 1503 to use for the transactions.In some embodiments, the consumer may choose more than one paymentreference account for the transactions. In alternative embodiments, theconsumer may choose one payment account reference for the currenttransaction and a different payment account reference for futuretransactions. The consumer may also designate other information byreference either alone or in combination with reference paymenttransactions. For example, the consumer may designate a referencepersona 1504 for the transaction. In some embodiments, the referencepersona may contain contact information for the consumer. In otherembodiments, the reference persona may contain contact information foranother party. In still other embodiments, the reference persona maycontain privacy enhanced information that limits the merchant'sknowledge of some of the consumer's personal information or details. Insome embodiments, the consumer may designate a reference address 1505for use in the transaction. The reference address may be a user'spreferred shipping address for a transaction. In other embodiments, thereference address may contain multiple addresses for use in variousparts of the transactional relationship with the merchant. In stillother embodiments, the reference address may be a designation thatresolves to a third party that may then forward shipments to theconsumer. In this embodiment, the consumer may advantageously be able toreceive shipments using a reference address from a merchant withoutdisclosing their actual address information to the merchant. Thirdparties may act as intermediaries for different types of reference linksin various embodiments. In some embodiments, the consumer may click abutton in the lightbox 1506 to link the selected references to themerchant. In other embodiments, the consumer may click a button 1507 tocreate a new reference. In doing so, the consumer may be prompted forinformation required to establish the reference link, such as adding acard to the consumer's wallet, adding an address for the reference link,or adding a persona to a virtual wallet. In some embodiments, theconsumer may be presented with a QR code 1508, bar code, or other visualelement suitable for scanning by a mobile device. In doing so, the usermay be able to establish the reference link with heightened security,less user input, or by sharing less information directly with themerchant. In some embodiments, the reference transaction link may beestablished to facilitate future refunds to the consumer. For example, auser may enroll a reference transaction link with an insurance providerto facilitate future claim refunds to the user's virtual wallet. Inother embodiments, the refund reference link may be used by a merchantthat has previously charged the user for a transaction. In alternativeembodiments, the refund reference link is only used to facilitaterefunds and may not be used for payments.

FIG. 16 shows an example user interface illustrating a referencemanagement console. In some embodiments, the consumer can see themerchants associated with a payment reference 1601. A nickname for apayment reference 1609 may be displayed in some embodiments. A consumermay update the nickname associated with a reference 1609 or the paymentaccount the reference uses 1603 by clicking a button 1602 in oneembodiment of the interface. In some embodiments, multiple paymentaccounts may be linked to one reference account. The nickname the userhas chosen for the reference payment link 1609 may also be customizedfor various merchants using the reference 1604 to facilitate recognitionof the reference account in the context of a merchant's web site. Insome embodiments, the reference management console may show the terms ofthe financial relationship 1605 that the consumer has established withthe merchants. The terms, in other embodiments, may be other thanpayment terms. For instance, terms may be product specifications,shipment standards, on-account credit agreements, or other aspects ofthe consumer's relationship with a merchant. In some embodiments, atransaction history is available in the management console or elsewherein the W-CONNECTOR. A consumer may also administer the referencetransaction links from within the reference management console orelsewhere in the W-CONNECTOR. For example, the consumer may revokeaccess to a merchant linked to a reference payment 1607. A consumer mayalso cancel a recurrent subscription with a merchant from within theW-CONNECTOR. In alternative embodiments, the consumer may request morefavorable payment terms, incentives, value added services, or a refundthrough the reference management console or elsewhere throughout theW-CONNECTOR.

FIG. 17 shows a block level diagram depicting exemplary failover paymentcapabilities of a reference transaction payment link. In one embodiment,the user may designate a reference name for a collection of paymentaccounts 1701. The user may choose a primary account to be used ifsufficient funds are available 1702 and a backup account to be used inthe event the primary account link fails 1703. A failure may be causedby insufficient funds, account closure, or other events. In an exampletransaction, merchant 1707 may use reference 1701 to execute atransaction that resolves to payment account 1702 and successfullyprocesses the payment 1704. In another example, if the reference link tothe primary payment method is broken 1705, the transaction may stillresolve to backup payment method 1706. In alternative embodiments, theconsumer may designate rules regarding the order in which paymentaccounts should be used by a reference link and what criteria shoulddetermine the order. For example, a consumer may decide that alltransactions from a certain type of merchant (i.e., grocerytransactions, foreign travel transactions, etc.) should be processedthrough one payment account associated with the reference payment link.The consumer may also designate other payment accounts to handletransactions of other types.

FIGS. 18 and 18 a are exemplary datagrams depicting the creation of areference payment link between a merchant and a user. In FIG. 18, user1821 requests a checkout page using a client terminal 1806. The checkoutpage request 1802 is dispatched to a merchant web server 1803. Themerchant web server then replies to client 1806 with a checkout pageresponse 1804. The checkout page response 1804 is embedded with codethat causes client to initiate a second request to a wallet server. Theclient 1806 parses the checkout page response 1805. The client thendispatches a second request 1807 to a wallet server for a paymentbutton. The wallet server responds with a payment button 1809, which isrendered by the client terminal 1820. The user then designates thepayment button using an input device such as a mouse or finger 1822. Theclient 1806 then dispatches a request for a lightbox 1823 to walletserver 1808. The wallet server replies with a lightbox response 1824containing reference transaction link information. In some embodiments,the lightbox response is substantially in the form of an HTTP(S) messageincluding XML-formatted data, as provided below:

Host: www.merchant.com Content-Type: Application/XML Content-Length: 667<?XML version = “1.0” encoding = “UTF-8”?> <lightbox_response> <timestamp>2013-02-22 15:22:43</timestamp>  <user_details>  <user_name>JDoe@gmail.com</user_name>   <password>Tomcat123</password> </user_details>  <reference>   <refname>Personal Card</refname>  <type>reference_payment</type>  <contract_id>1Z4567248987321</contract_id>  <contract_trms>234.99,immediate|40.00,permonth</contract_trms> </reference>  <reference>   <refname>Secret Name</refname>  <type>reference_persona</>   <name>Alias Name</name>  </reference> <reference>   <refname>Vacation Address</refname>g  <type>reference_address</>   <addr>500 Main St.</addr>  <city>Anycity</city>   <state>NY</state>   <zip>12345</zip> </reference> </lightbox_response>

The datagram in FIG. 18 then continues in FIG. 18 a. Client 1806 thenrenders the lightbox 1825. In some embodiments, the lightbox appearsoverlaid on the merchant's web site. In other embodiments, the lightboxappears in a different window. Upon rendering of the lightbox, user 1821is then presented with reference links that have already been created.In some embodiments, the user may re-use a previously created referencepayment, persona, address, or other link by selecting its alias from thelightbox. In other embodiments, the user can create a new reference linkfrom within the lightbox. In some embodiments, the reference creationrequest 1827 may be substantially in the form of an HTTP(S) messageincluding XML-formatted data, as provided below:

Host: www.merchant.com Content-Type: Application/XML Content-Length: 667<?XML version = “1.0” encoding = “UTF-8”?> <reference_creation_request> <timestamp>2013-02-22 15:22:43</timestamp>  <user_details>  <user_name>JDoe@gmail.com</user_name>   <password>Tomcat123</password> </user_details>  <new_reference>   <refname>New Business Card</refname>  <type>reference_payment</>   <card_num>1234123412341234</card_num>  <contract_trms>234.99,immediate|40.00,permonth</contract_trms> </new_reference> </reference_creation_request>

In some embodiments, wallet server 1808 may then process the referencecreation request. For example, the wallet server may verify that thereference payment may be linked to the merchant. The wallet server mayalso verify that the reference payment account has sufficient funds tocover the current or future transactions. The wallet server 1808 thenmay reply to client 1806 with a reference creation response indicationsuccessful or failed reference creation. The client 1806 may then renderresponse 1830.

FIG. 19 illustrates an example issuer side wallet enrollment interfaceuser interface. In some embodiments of the W-CONNECTOR, a consumer maybe logged into their bank issuer's web site or mobile application 1901.The web site may provide a listing of accounts that are associated withthe consumer 1902-1902 a. Additionally, recent transaction and balanceinformation 1904-1904 a may be provided to the consumer. In oneembodiment, a consumer may add one or more accounts to a virtual walletby indicating which accounts from the accounts associated with theissuer should be added to the virtual wallet 1903-1903 a. In otherembodiments, the consumer may be able to select multiple cards forsimultaneous addition to a virtual wallet.

FIG. 20 a illustrates a lightbox window 2001 for linking paymentaccounts to a virtual wallet, creating a virtual wallet, and/orsimultaneously creating a virtual wallet and linking payment accounts tothe newly created wallet account. In some embodiments, the lightbox isgenerated from a third-party provider through the use ofServer-Side-Includes, absolute URL's, JavaScript, or other likeinclusion mechanism. In other embodiments, the lightbox may instead bydisplayed after forwarding the user to a third-party web site and/or ina form that encompasses an entire browser window. In some embodiments,the consumer may desire to enroll more than one card 2002 simultaneouslyin their wallet account. As such, the lightbox may facilitate throughone interface the simultaneous addition 2003 of multiple cards to awallet account. In some embodiments, the user may already have a virtualwallet account that they wish to associate the payment accounts with2004. As such, the lightbox may solicit from the user credentialssufficient to identify the virtual wallet account to which the paymentaccounts should be added. In some embodiments, the credentials may be inthe form of a user name/password combination, a user name/Emailcombination, and/or the like 2005. Once the user has entered theappropriate wallet credentials, they may then link the payment accountsto the wallet 2006. This may result in the lightbox (e.g., from anissuer, merchant, and/or a like source) creating message 2221 andpulling the information from the issuer server (see FIG. 22 b). In otherembodiments, the consumer may desire to simultaneously create a virtualwallet account and add the selected payment accounts to the wallet 2007.Advantageously, in some embodiments the consumer may desire to allow theissuer of the payment accounts to send information regarding theconsumer's financial account with the issuer and/or the consumer'spayment accounts with the issuer to the virtual wallet account provider2008. In doing so, the consumer may be assisted in the creation of avirtual wallet account by avoiding the entry of repetitive data that theissuer already has on file. This pre-fill of data may also beadvantageously used in the establishment of other account types,including pre-paid accounts, reward accounts, savings accounts, and/orthe like. In other embodiments, the consumer may indicate that thevirtual wallet account is to be set up with the requirement for twofactor authentication 2009. Two factor authentication is a form ofauthentication that requires two distinct types of information in orderto authenticate a user. For example, a user may be required to provide auser name/password combination and a one-time code generated by theirmobile device. Alternatively, the user may be required to identify animage of a friend and provide a thumbprint. Any two types of informationthat are known to a consumer may be used to enable two-factorauthentication using the W-CONNECTOR. In other embodiments, the consumermay be prompted to simultaneously create a pre-paid payment accountwhile they are creating a new wallet and/or linking payment accounts toan existing wallet. In some embodiments, if a consumer chooses to createa pre-paid account they may be prompted to select a payment account fromwhich to fund the pre-paid account. In other embodiments, the consumermay then enter the account information (e.g., account number, billingaddress, etc.). In still other embodiments, the account information maybe retrieved from the account issuer or from the issuer the consumer iscurrently logged into. In some embodiments, the consumer may desire tocreate a rule set that may define the conditions in which the pre-paidaccount may be replenished with funds. Some example rules include there-filling of the pre-paid account when the account balance reaches athreshold, the re-filling of the pre-paid account when a user's chosenfinancial account(s) reach a certain balance amount and/or receive adeposit of a certain size, and/or the like. In doing so, the W-CONNECTORmay enable a user to easily create a pre-paid account while linkinganother account to their virtual wallet, creating a virtual wallet,and/or the like. In some embodiments, the pre-paid card creation request2010 may be substantially in the form of an HTTP(S) message includingXML-formatted data, as provided below:

Host: www.foo.com Content-Type: Application/XML Content-Length: 667<?XML version = “1.0” encoding = “UTF-8”?> <prepaid_creation_request> <timestamp>2020-02-22 15:22:43</timestamp>  <user_details>  <username>JDoe@gmail.com</user_name>   <password>Tomcat123</password>  <billing_address>123 Main St.</billing_address>  <billing_state>VA</billing_state>   <billing_zip>12345</billing_zip> </user_details>  <prefill_data_source>  <type>prefill_from_issuer_account_data</type>  <account_number>456456456456</account_number>  </prefill_data_source> <new_prepaid_card>   <name>Lunch Money Prepaid Card</name>  <type>prepaid</type>   <funding_source>   <type>rewards_points_account</type>   <initial_deposit>10000points</initial_deposit>   <currency_value>$124.52</currency_value>   </funding_source>  <funding_source>    <type>savings_account</type>   <account_number>1234123412341234</account_number>   <routing_number>012345678</routing_number>   <initial_deposit>$500.50</initial_deposit>   </funding_source>  <funding_source>    //...n-sources of funding...   </funding_source>  <replenishment_rule>   <type>low_prepaid_balance_initiate_deposit</type>   <trigger_value>$20.00</trigger_value>   <expires>2010-01-01</expires>   </replenishment_rule>  <replenishment_rule>    <type>date</type>   <frequency>monthly</frequency>    <day>15</day>   <expires>never</expires>   </replenishment_rule>  </new_prepaid_card></prepaid_creation_request>

In some embodiments, the user may desire to simultaneously pre-fillinformation at the virtual wallet provider, force two-factorauthentication before using the virtual wallet account, and/or establisha pre-paid payment account 2011.

FIGS. 20 b-20 d show an example alternate embodiment of the interface asdescribed in FIG. 20 a. In some implementations, the user may bepresented to a card management screen (e.g., from an issuer, merchant,and/or like source) that allows the user to select 2012 bank creditcards 2013 a and/or debit cards 2013 b to be used in the user's virtualwallet. In some implementations, information 2014 related to each cardmay be displayed with the card selection, including the card number, thecard balance, images of the card, and/or like identifying information.After entering sign-in information 2015 for the user's virtual walletaccount (e.g., a username or email address, a password, and/or likeinformation), the user may click a button 2016 to submit the chosencards and to log into the user's virtual wallet account. This may resultin the website (e.g., from an issuer, merchant, and/or a like source)creating message 2220 and pushing the information to the virtual walletserver (see FIG. 22 b).

If the user does not have a virtual wallet account, the user may sign upvia filling out a form 2017 as shown in FIG. 20C, which may ask the userfor identification information (e.g., a name, username, and/or thelike), an email address, a password for the account, other information(e.g. gender, address, and/or the like), and/or like information. Oncethe user has entered said information, the user may click the continuebutton 2016 to submit the request for an account and the card selectionsto be associated with the newly-created account.

In some implementations, the W-CONNECTOR, before submitting the cardselections, may present the user with lightbox 2018, which may indicatewhich cards have been selected. The user may have the ability to confirmthe card selections by leaving all of the selections 2019 as-is andclicking the complete button 2021, may deselect one or more of theselected cards and click the complete button, or may click the startover button 2020 in order to clear all selections and to return to thecard selection interface. As such, in such implementations, only theaccounts checked or otherwise selected by the user may be passed to thevirtual server and added to the user's virtual wallet. Once the user hasclicked the complete button, the bank issuer may package the informationreceived from the user, and may send it to the W-CONNECTOR. TheW-CONNECTOR may then send a request to a virtual wallet server,authenticating the user's account via the submitted login data, andrequesting that the virtual wallet server associate the specified cardswith the user's virtual wallet. If the user submitted information forcreating a new virtual wallet account, the W-CONNECTOR may instead senda request that creates a virtual wallet account for the user andassociates the specified cards with the user's virtual wallet.

FIG. 21 is an example data and logic flow illustrating the enrollment ofa consumer account in a virtual wallet service and the utilization of apre-fill service to pre-populate information necessary for walletenrollment. In some embodiments, the consumer is directed to the virtualwallet enrollment page by directly typing the enrollment URL in a webbrowser 2101. In some embodiments, the consumer is navigated to a walletlogin page where they may log into a wallet or create a new walletaccount 2101 a. In other embodiments, the consumer may enroll in thevirtual wallet through a link in their issuer's web site, credit cardcompany, rewards online access account, and/or the like. In someembodiments, the user may then create a virtual wallet account 2102. Inother embodiments, the user may log into their pre-existing virtualwallet account. The user may then activate the wallet account 2102 a.The user may then indicate that they desire to add a new payment accountto their virtual wallet 2103. The W-CONNECTOR may then request that theuser consent to the retrieval of their payment account information fromthe payment account issuer 2104. The user may be asked to provide theaccount number of the payment account that the user wishes to link totheir virtual wallet account 2105. The W-CONNECTOR may then use theuser's account number or other credential such as a username/passwordcombination or the like to initiate a request for retrieval ofpre-provisioned data associated with the payment account 2106. In someembodiments, the request for retrieval of pre-provisioned data 2106(e.g., “prefill data”) may be in the form of an HTTP(S) messageincluding XML-formatted data containing fields substantially similar tothe following:

Element Field Element Name Description Size Type Business Rule BIDBusiness ID of the Numeric For Federated Issuer Scenarios BID and CIDCID Customer ID of the Numeric Cardholder PAN PAN Number of the NumericFor Manual scenario Cardholder PAN entered by the userIn some embodiments, the request for retrieval of pre-provisioned data2106 (e.g., “prefill data”) may be substantially in the form of anHTTP(S) message including XML-formatted data, as provided below:

Host: www.server.com Content-Type: Application/XML Content-Length: 667<?XML version = “1.0” encoding = “UTF-8”?><preprovisioned_prefill_request>  <BID>247581</BID>  <CID>9854254</CID> <FAN>1234123412341234</PAN>  <wallet_id>RW987856</wallet_id></preprovisioned_prefill_request>

In some embodiments, the issuer may then use the data in the request toperform a lookup of account and/or prefill information that may beshared with the requesting service. In some embodiments, the issuer mayhave a permissions rule set that governs what data may be shared withrequesting services. Example rules include, “Never share my businessaccount number,” “Default to my personal account,” “Never share mybilling address,” and/or the like. In some embodiments, the issuer maythen respond to the virtual wallet server 2107 with a prefill datapackage containing user, user account, user financial account, and/orsimilar data for use in establishing a virtual wallet account, pre-paidaccount, enrolling a payment account in a virtual wallet, and/or thelike. In some embodiments, the pre-provisioned data response 2107 (e.g.,“prefill data”) may be in the form of an HTTP(S) message includingXML-formatted data containing fields substantially similar to thefollowing:

Field Element Element Name Description Size Type Business Rule <UserDetails> BID Business ID of the 8 Alpha Numeric Identification of thebank Issuer CID Customer ID of the 19 Numeric The CID Cardholder TheCustomer ID is a unique identifier for the user for the given issuer.This field is used to link the accounts (PANs) for a given user for theBID Name Prefix 5 Alpha Numeric First Name Cardholder first 15 AlphaNumeric name Middle Initial Cardholder 1 Alpha Numeric middle nameinitials Last name Cardholder last 25 Alpha Numeric name Name SuffixCardholder suffix 5 Alpha Numeric Company Name 40 Alpha Numeric Companyname if the account is help by a company instead of an individualCountry Code 3 Alpha Numeric Country of Residence of the cardholderNumeric Country code ISO Numeric Currency Code. USA: 840 Canada: 124Language Code Cardholder 8 Alpha Numeric Cardholder language as set withthe issuer language as set with the issuer <Card Details> Account NumberPAN Number of the 19 Alpha Numeric Card Number Cardholder Card ExpiryDate Expiration date of 4 UN The expiration date as provided on the cardthe card Format: YYMM Card Brand 4 Alpha Numeric Example of the cardbrand: Visa Product Identifier 2 Alpha Numeric Company Name 40 AlphaNumeric Name on the Card 26 Alpha Numeric Phone Number on 10 UN back ofthe card Billing Cycle Start 8 UN Account Billing Cycle start date, usedfor spend Date accumulations and reminders Street Number 10 AN BillingAddress street number Address Line 2 40 AN Street Name 40 AN BillingAddress street name Unit Number 10 AN PO Box Number 10 AN City 30 ANBilling Address City State 2 AN Billing Address state For US Province 10AN Billing Address province For Canada ZIP 10 UN Billing Address zipcode Country 3 AN Billing Address country Product type 10 AN The producttype as provided on the card: Credit Debit Prepaid Card Image Name 50 ANReason codeIn some embodiments, the pre-provisioned data response 2107 (e.g.,“prefill data”) may be in the form of an HTTP(S) message includingXML-formatted data substantially similar to the following:

Host: www.server.com Content-Type: Application/XML Content-Length: 667<?XML version = “1.0” encoding = “UTF-8”?><preprovisioned_prefill_response>  <BID>247581</BID>  <CID></CID> <wallet_id>AK21574</wallet_id>  <name_prefix></name_prefix> //reference link may be used in place of data  <first_name>ref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=first_name</first_name>  <middle_initial></middle_initial> <last_name>Doe</last_name>  <name_suffix></name_suffix> <company_name></company_name>  <country_code></country_code> <language_code></language_code>  <account_number>ref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=account_number</account_number>  //alternatively, parameters (e.g. card expirationdate)  //can be made a live link requiring no parsing  <card_expiry_dateref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=card_expiry_date>09/2020</card_expiry_date>  <card_brand>Visa</card_brand> <product_identifier></product_identifier> <company_name></company_name>  <name_on_cardref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=name_on_card >JohnDoe</name_on_card>  <phone_number_on_card></phone_number_on_card> <billing_cycle_start_date></billing_cycle_start_date>  <street_numberref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=street_number >58</street_number> <address_line_2></address_line2>  <street_nameref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=street_name >MainSt.</street_name>  <unit_number></unit_number> <pobox_number></pobox_number>  <cityref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=city_name >Anytown</city> <stateref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=state>VA</state > <province></province>  <zipref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=zip>11547</zip> <country></country>  <product_type></product_type>  <card_imageref_link=http://visanet.com/?walletid=AK21574&user_id=9548field=card_image>http://www.imageserver.com/DRESKKJHKUHU/?764765765765</card_image> <reason_code></reason_code> </preprovisioned_prefill_response>

In some embodiments, the pre-provisioned data response 2107 may containreference links (e.g., 1503, 1504, 1505 and/or the like) allowingdynamic updating of the data in the virtual wallet and/or at the paymentcard issuer. In some embodiments, the virtual wallet may thenpre-populate the provided information 2108 into a form for enrollment ofthe user's payment account, rewards account, and/or like in the user'svirtual wallet. In some embodiments, the W-CONNECTOR may then make arequest to retrieve an image for the card and/or payment account beingadded to the virtual wallet 2109. In some embodiments, the card imagemay be a default image. The wallet server may store the card imageslocally, in a cache, or retrieve the card images via a web service suchas XML-RPC, SOAP, and/or the like. In some embodiments, the imageretrieval request 2109 may be in the form of an HTTP(S) messageincluding XML-formatted data containing fields substantially similar tothe following:

Element Field Element Name Description Size Type Business Rule AccountPAN Number 19 Alpha Numeric For Manual scenario Number of the PANentered Cardholder by the userIn other embodiments, the image retrieval request 2109 may besubstantially in the form of an HTTP(S) message including XML-formatteddata, as provided below:

Host: www.accountcardimageserver.com Content-Type: Application/XMLContent-Length: 667 <?XML version = “1.0” encoding = “UTF-8”?><retrieve_image_request>  <timestamp>2020-02-22 15:22:43</timestamp> <account_number>1234123412341234</account_number> <user_identifier>987654874</user_identifier> <image_resolution_desired>400x200</image_resolution_desired> <image_formats_desired>   <type preference=1>JPG</type>   <typepreference=2>PNG</type>   <type preference=3>HTML</type> </image_formats_desired>  <image_formats_accepted>   <type>JPG</type>  <type>PNG</type>   <type>HTML</type>   <type>GIF</type> </image_formats_accepted> </retrieve_image_request>

In some embodiments, the card image server may then query a data storefor an image of the card. An example PHP/SQL listing for querying adatabase for a card image is provided below:

<?PHP header(‘Content-Type: text/plain’);mysql_connect(“254.93.179.112”,$DBserver,$password); // access databaseserver mysql_select_db(“CARDIMAGES.SQL”); // select database table tosearch //create query for token arbitrators $query = “SELECT card_id,file_location, file_format FROM CardTemplate WHERE card_type LIKE ‘%’$usercardtype”; $result = mysql_query($query); // perform the searchquery mysql_close(“ARBITRATORS.SQL”); // close database access ?>

The card may be a card virtually identical to the card the consumer isenrolling, or the card may be of a similar kind but of a more generictype (e.g., “green card,” “gold card,” “loyalty card,” and/or the like).The data store may have multiple versions of the card available invarious size/pixel resolutions and/or image formats. In someembodiments, the card image most closely matching the user's request maybe returned to the user. In other embodiments, all card images meetingany of the criteria may be returned. In still other embodiments, thecard image server may create an image “on the fly” in real-time using adynamic image creation tool and/or a template tool such as ImageMagik,Gimp, Photoshop droplets, and/or the like. In one embodiment of theinvention, the card template image retrieved from 2419 i may beoverlayed with a logo, photo of the user, or other similar data usingBash ImageMagik UNIX instructions substantially similar to:

#!/bin/bashcomposite -compose atop -geometry -13-17 card_overlay.png card_template.pngcard_output.pngThe card image server may then return a data package containingdescriptive information about the images returned, user data, accountdata, actual image data, and/or the like. In some embodiments, the imageretrieval response 2109 a may be substantially in the form of an HTTP(S)message including XML-formatted data containing fields substantiallysimilar to the following:

Element Field Element Name Description Size Type Business Rule BIDBusiness ID of the 8 Alpha Identification Issuer Numeric of the bank CIDCustomer ID of the 19 Numeric The CID Cardholder The Customer ID is aunique identifier for the user for the given issuer. This field is usedto link the accounts (PANs) for a given user for the BID Account PANNumber of the 19 Numeric Number Cardholder Card 50 Alpha Image NumericFile Name Reason codeIn still other embodiments, the image retrieval response 2109 a may besubstantially in the form of an HTTP(S) message including XML-formatteddata, as provided below:

  Host: www.accountcardimageserver.com Content-Type: Application/XMLContent-Length: 667 <?XML version = “1.0” encoding = “UTF-8”?><retrieve_image_response>  <timestamp>2020-02-22 15:22:43</timestamp> <account_number>1234123412341234</account_number> <image_format>JPG</image_format> <image_generated_type>on-the-fly-generated</image_generated_  type> <image_binary_data>   SDFRDTCXREERXFDGXFDXRESRXREX . . . TREEE#W#E  JIJGYTFTRCCBBJHGFEER{circumflex over ( )}&&{circumflex over( )}YHGJNJKOIEJJVH   NMJNKJYT%TYFVVYTYVVEGUGUYGUYERSESWCGVU  VDRTGCDSERFDCVUE$RDTYYYYGVTYFTDGUHIUNI  </image_binary_data> <image_url>http://imageserver.com/abc/image.jpg</image_url>  <cache_available_until>2030-02-22 15:22:43</cache_available_  until></retrieve_image_response>

In some embodiments, the image response may contain a cache controlindication. The image server may indicate that it may cache the imagefor use by the wallet server, user, and/or like until a certain date ortime. Alternatively, the cache date may be set to a date in the past,which indicates that the image may not be cached. By using a cachedversion of the image, the card image server may advantageously be ableto provide individually customized versions of the card images for cardimage requesters without having to frequently re-generate customizedcard images (e.g. images containing a logo, or the user's name and/orphoto) frequently. After the card image has been retrieved, the user mayclick a “Save” button to enroll the card in the wallet. In otherembodiments, no card image is retrieved. In still other embodiments, thepayment account is automatically added to the wallet. Additional loggingand/or data storage may take place on the wallet server and/or data maybe stored in a staging table 2111, such as delayed processing of cardenrollment requests during heavy periods of load. In some embodiments,the enrolled payment account and/or wallet enrollment data may be storedin a staging table for later processing 2111 a. In some embodiments, thedata stored in the staging table 2111 a may be substantially similar tothe following:

Field Element Element Name Description Size Type Business Rule BIDBusiness ID of the 8 Alpha Numeric Issuer CID Customer ID of the 19Numeric Cardholder Account Number PAN Number of the 19 Alpha NumericCardholder Replaced Account 19 Alpha Numeric Old Account Number NumberURI /vManage/v1/account/{GUID}/paymentInstruments/{payment InstrumentID}Name Prefix 5 Alpha Numeric First Name Cardholder first 15 Alpha Numericname Middle Initial Cardholder 1 Alpha Numeric middle name initials Lastname Cardholder last 25 Alpha Numeric name Name Suffix Cardholder suffix5 Alpha Numeric Company Name 40 Alpha Numeric Company name if theaccount is help by a company instead of an individual Country Code 3Alpha Numeric Country of Residence of the cardholder Numeric Countrycode ISO Numeric Currency Code. USA: 840 Canada: 124 Language CodeCardholder 8 Alpha Numeric Cardholder language as set with the issuerlanguage as set with the issuer Primary E-Mail 50 Alpha NumericCardholder primary email address, this field may be Address used as theuser ID in the wallet Primary E-Mail 1 Alpha Numeric This fieldindicates whether this email address has Address Verification beenverified as a valid email address for the cardholder Secondary E-Mail 50Alpha Numeric Cardholder alternate or secondary email address AddressSecondary E-Mail 1 Alpha Numeric This field indicates whether this emailaddress has Address Verification been verified as a valid email addressfor the cardholder Home Phone 3 UN Country Code prefix Number CountryUSA: 001 Code Canada: 001 Home Phone Number 10 Alpha Numeric PrimaryMobile 3 UN Country Code prefix Phone Number USA: 001 Country CodeCanada: 001 Primary Mobile 10 UN Number Primary Mobile 1 Alpha NumericThis field indicates whether this mobile number has Number Verificationbeen verified as a valid mobile number for the cardholder AlternateMobile 3 UN Country Code prefix Phone Number USA: 001 Country CodeCanada: 001 Alternate Mobile 10 UN Number Alternate Mobile 1 AlphaNumeric This field indicates whether this mobile number has NumberVerification been verified as a valid mobile number for the cardholderWork Phone 3 UN Country Code prefix Number Country USA: 001 Code Canada:001 Work Phone Number 10 UN Work Phone 10 UN Number Extension Fax Number3 UN Country Code prefix Country Code USA: 001 Canada: 001 Fax Number 10UN Card Brand 4 Alpha Numeric Example of the card brand: Visa ProductIdentifier 2 Alpha Numeric Company Name 40 Alpha Numeric Name on theCard 26 Alpha Numeric Phone Number on 10 UN back of the card BillingCycle Start 8 UN Account Billing Cycle start date, used for spend Dateaccumulations and reminders Street Number 10 AN Billing Address streetnumber Address Line 2 40 AN Street Name 40 AN Billing Address streetname Unit Number 10 AN PO Box Number 10 AN City 30 AN Billing AddressCity State 2 AN Billing Address state For US Province 10 AN BillingAddress province For Canada ZIP 10 UN Billing Address zip code ForUnited States and Canada Country 3 AN Billing Address country Producttype 10 AN The product type as provided on the card: Credit DebitPrepaid Card Image Name 50 Alpha Numeric Enrolled Indicator 1 AlphaNumeric Card Added Method 25 Alpha Numeric Federated Manual

The pre-provisioned data record may then be updated with the new walletUUID 2111 c. In some embodiments, the record may be marked with anindication of enrollment method (such as “manual”) and additional datamay be associated with the record such as an auto-update flag used inreference transactions, an account level identifier for associatingchild accounts with a parent account, acceptance of a terms andconditions, and/or a hashed card art image name 2111 b. In someembodiments, the user may receive an indication that they have completedthe payment account enrollment in the virtual wallet 2112, creation ofthe wallet account, and/or the like.

FIG. 22 a is an example wallet account enrollment optionally usingprefill data from a payment account issuer. In some embodiments, theconsumer is logged into an issuer's web site 2201. The consumer mayclick a button indicating that they wish to enroll payment accountsassociated with the issuer in a virtual wallet 2201 a. The consumer mayindicate that they wish to enroll some or all of their payment accountswith the issuer in a virtual wallet service 2201 a. As such, the usermay be asked to give their consent to their account information beingtransferred from the issuer to a virtual wallet provider 2202. The usermay accept the message 2202 a. In some embodiments, the issuer may thentransfer the prefill and/or pre-provision data for all of the cardsassociated with a consumer user via a SAML assertion or other transfermechanism 2203, which may be achieved using a data structure for eachaccount similar to the above discussed pre-provisioned data response2107. In some embodiments, payment account data may by stored by thewallet server 2203 a. In other embodiments, the consumer may selectwhich accounts information they desire to be transferred to the virtualwallet provider. In some embodiments, the consumer may then betransferred to the virtual wallet provider's web site 2203. A log-inpage is then shown to the consumer 2204 to enable the consumer to loginto their virtual wallet account. In some embodiments, the consumer maybe automatically logged into their virtual wallet. In some embodiments,the consumer may log into their existing wallet using an email addressand password and/or other similar means 2204 b. A consumer may thenindicate that they wish to enroll a card in a virtual wallet, such as byclicking an “Add Card” button 2204 a, 2204 c. The W-CONNECTOR mayrequest that the user consent to retrieve card prefill data from anissuer 2204 d. In other embodiments, the consumer may be presented witha list of the payment accounts transferred from the issuer and/or imagesof the card accounts transferred and select which accounts to link totheir virtual wallet. In some embodiments, the consumer may type thenumber of the account that they wish to add to their virtual wallet2205. The W-CONNECTOR may then verify that the account number isassociated with one of the accounts with data transferred from theissuer as pre-fill and/or pre-provision data 2206. In some embodiments,the system may then pre-populate appropriate data in the enrollment formand request that the user indicate if they would like automatic updatingof data after enrolled 2207. Examples of automatic updating (references)can include account number (e.g. PAN) and/or expiration dates 2207. Insome embodiments, the W-CONNECTOR may then advantageously pre-populatethe pre-provision and/or pre-fill data into input boxes for the user toenroll their payment account. The user may then enroll their card in thevirtual wallet by clicking a “Save” button 2208. In other embodiments,the payment account is automatically added to the virtual wallet withoutuser interaction. The W-CONNECTOR may perform address validation orverification 2208 a prior to attaching the card to a virtual wallet. Insome embodiments, the W-CONNECTOR may then associate the added paymentaccount(s) to the user's pre-existing virtual wallet 2209. In otherembodiments, a new virtual wallet may be created. The W-CONNECTOR mayadditionally create an entry in a staging table 2210, using meanssubstantially similar to 2111, 2111 a and/or 2111 b. Theprefilled/preprovisioned data may be inserted into the staging tablewith an enrolled designation 2210 a. Later, records may be pulled fromthe staging table by an automated process and/or similar means,processed, and pushed to a common services platform 2210 b. A record maybe stored by the wallet server or otherwise indicating that the consumerwas enrolled in a wallet account or payment accounts were enrolled via afederated bank website 2210 c. Additionally, data about additional cardsmay be stored for analytics purposes or other purposes 2210 d. Theconsumer may be presented with a confirmation of successful enrollmentafter the payment account and/or wallet service has been enrolled and/orthe staging table entry has been made 2211 (see FIG. 12 a for an examplecard account success enrollment interface).

FIG. 22 b is a block diagram showing an exemplary process of enrollingcard accounts in a wallet account. In some embodiments, the user 2212may request an issuer page, website, or application 2213 via theirelectronic device 2225. The device may send an issuer page request 2214to the issuer's server 2215, which may return the issuer's page,website, and/or application 2216 to the electronic device (see FIGS. 24b and 24 g).

In some embodiments, the user may provide card account selections to addto the wallet 2219 to the electronic device (see FIGS. 24 e and 24 h-i).The electronic device may send said selections to the issuer server viaa request card account info push to a wallet message 2220. In someimplementations, the XML-encoded push to wallet message 2220 may take aform similar to the following:

POST /pushtowalletrequest.php HTTP/1.1 Host: www.merchant.comContent-Type: Application/XML Content-Length: 667 <?XML version = “1.0”encoding = “UTF-8”?> <push_request>  <timestamp>2013-02-2215:22:43</timestamp>  <auth_params> <digital_cert>http://cert_request_server.com/cert_request_1236789.cert</digital_cert>  </auth_params>  <wallet_params>   <wallet_name>WalletWallet</wallet_name>   <wallet_address>http://v.me/</wallet_address>  <wallet_type>online</wallet_type>  </wallet_params> <wallet_auth_params>  <wallet_auth_username>myusername</wallet_auth_username>  <wallet_auth_password>mypassword</wallet_auth_password>  <wallet_auth_ID>098382093YUI</wallet_auth_ID>  </wallet_auth_params> <user_details>   <user_name>JDoe@gmail.com</user_name>  <password>Tomcat123</password>   <user_ID>12348901</user_ID> </user_details>  <card_details>  <card_number>1111222233334444</card_number>  <card_security>123</card_security>   <card_ID>135792</card_ID>  <card_address>789 Main Street, AnyCity, AnyState 12345</card_address>  <card_expire>2025-01-01</card_expire>  </card_details>  <card_details>  <card_number>9999888877776666</card_number>  <card_security>456</card_security>   <card_ID>246801</card_ID>  <card_address>222 Example Street, AnyCity, AnyState55555</card_address>   <card_expire>2025-05-10</card_expire> </card_details> </push_request>

In some embodiments, the message may contain card selection information,user account information for the issuer, user account information forthe wallet service, and/or the like. The issuer server may then push theselection information via a new card account add request 2223 to thewallet server 2217. In some implementations, the XML-encoded request2223 may take a form similar to the following:

POST /newcardrequest.php HTTP/1.1 Host: www.merchant.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <new_card_request>  <timestamp>2013-02-22 15:22:43</timestamp> <auth_params>   <passcode>my_password</passcode>  </auth_params> <user_details>   <user_name>JDoe@gmail.com</account_name>  <password>Tomcat123</password>   <user_ID>12348901</user_ID> </user_details>  <card_details>  <card_number>1111222233334444</card_number>  <card_security>123</card_security>   <card_ID>135792</card_ID>  <card_address>789 Main Street, AnyCity, AnyState 12345</card_address>  <card_expire>2025-01-01</card_expire>  </card_details>  <card_details>  <card_number>9999888877776666</card_number>  <card_security>456</card_security>   <card_ID>246801</card_ID>  <card_address>222 Example Street, AnyCity, AnyState55555</card_address>   <card_expire>2025-05-10</card_expire> </card_details> </new_card_request>

The wallet server may then use any information received from the issuerserver to modify the user's wallet account via a MySQL database commandsimilar to the following:

INSERT INTO user_cards (number, security_code, ID, address, expire)VALUES (card_number, card_security, card_ID, card_address, card_expire);

In some implementations, the electronic device may instead send the userselections to the wallet server via a request for a pull for cardaccount information from the issuer 2221 that is sent by a walletoverlay 2218 (see FIG. 24 c-d). In some implementations, the XML-encodedpull request 2221 may resemble the following:

POST /pullrequest.php HTTP/1.1 Host: www.merchant.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <pull_request>  <timestamp>2013-02-22 15:22:43</timestamp> <auth_params>   <auth_code>123ABC098</auth_code>  </auth_params> <issuer_params>   <issuer_name>Bank of America</issuer_name>  <issuer_type>bank</issuer_type>  <issuer_address>http://bankofamerica.com/accts</issuer_address> </issuer_params>  <issuer_auth_params>  <issuer_auth_username>my_username1</issuer_auth_username>  <issuer_auth_password>my_password1</issuer_auth_password>  <issuer_authID>12678HJK</issuer_auth_ID>  </issuer_auth_params> <user_details>   <user_name>JDoe@gmail.com</user_name>  <password>Tomcat123</password>   <user_ID>12348901</user_ID> </user_details>  <card_details>  <card_number>1111222233334444</card_number>  </card_details> <card_details>   <card_number>9999888877776666</card_number> </card_details> </pull_request>

The wallet server may use any identifying information (such as theuser's account number with the issuer, the user's card number(s), and/orthe like) provided in the request for card account information to createa new request 2222 to the issuer server. The wallet server may requestany information necessary to link the card account to the walletservice, including permission from the issuer, more information aboutthe card account not provided by the user (e.g., a card account ID,and/or the like). The issuer server may, after receiving such a request,send a new card account add request 2223 which may include allinformation requested by the wallet server.

FIG. 23 a is an exemplary virtual wallet and card enrollment logic anddata flow. In some embodiments, the user accesses a wallet URL using amobile device 2303. In other embodiments, the wallet URL is accessedfrom the user's computer, the user's issuer web site, and/or the like.In some embodiments, the wallet may be accessed either via awallet-implemented JavaScript overlay, via the issuer's site directly,and/or the like. If the wallet is accessed via the overlay, the walletmay pull card account information from the issuer. If the wallet isaccessed via the issuer's website, the wallet may push the card accountdata to the wallet server. If the user is already logged into theirwallet account 2304, as indicated in one embodiment by a cookie on theuser's computer, the user is directed to a wallet display including an“Add Card” button 2314. If the user is not logged into a virtual walletaccount, the W-CONNECTOR may then prompt the user to indicate if theyalready have a virtual wallet account 2305 and if so, prompt the user tolog into their account 2313. In some embodiments, the consumer may beasked to consent to the retrieval of pre-fill data from a paymentaccount issuer 2306. If the user does not consent, they may be directedto a wallet enrollment form with no pre-fill data pre-populated. Shouldthe user consent to the issuer sharing pre-fill data, the wallet server2301 may transmit a request to the issuer for data 2307 and the issuerserver may receive 2308 and process the request. If the user accountand/or pre-fill data is found by the issuer 2309, the data may betransmitted to the wallet server 2310 for use inpre-filling/pre-populating fields in the wallet enrollment form 2311. Ifno pre-fill data is found by the issuer, the user is directed to thewallet enrollment form 2311. In some embodiments, the issuer is a bank.In other embodiments, the issuer is a rewards account provider. In stillother embodiments, the issuer is a non-financial company and/or anindividual (as in peer-to-peer enrollment). The consumer may thencomplete any data required by the wallet enrollment form 2311. In someembodiments, the pre-fill data is filled into the enrollment form forthe user. Example data is user name, user billing address, user accountidentifier, mother's maiden name, security question and answer, and/orthe like. In other embodiments, some fields of the enrollment form 2311may be hidden if pre-fill data is available for those fields. Uponcompletion of the enrollment form, the user is enrolled into the wallet2312 and logged into the wallet with an option to add accounts 2314. Thelogic and data flow continues in FIG. 23 b.

FIG. 23 b is a continuation of an exemplary virtual wallet and cardenrollment logic and data flow. In some embodiments, the user clicks abutton to “Add Card” to their wallet. In other embodiments, no userinteraction is required. A user may then be prompted to enter their cardnumber, account number, PAN number, and/or similar 2316. In someembodiments, a user may be asked to consent to the retrieval of theaccount information from an account issuer 2317. In other embodiments,this user consent may be assumed. If the user does not consent to theretrieval of account information from the issuer 2317, then the user maybe prompted to input additional information about the payment account tofacilitate enrollment of the account in the wallet 2320. If the userdoes consent to the retrieval of card information from the issuer 2317,account data such as billing address, user name, credit history, and/orthe like is retrieved from the issuer 2318 and processed by the walletserver 2319. In some embodiments, the W-CONNECTOR may generate a requestfor a card image 2321. The request may be sent to a card image server2329. If the card image is available 2322, the card image server 2329may designate a template image for the card 2324. Alternatively, if noimage us available a default template image may be used 2323. In someembodiments, the card image server may create an “on the fly” image torepresent the card and overlay that image with appropriate consumerspecific data such as name, photo, and/or the like 2323 a. In someembodiments, confidential data such as PAN number, account number and/orthe like may be obscured from the overlaid data using a tool such asImageMagik. In doing so, the card image server may protect confidentialconsumer information. The image server may then create a card imageresponse to send the card image data and/or card image(s) to therequesting service. In some embodiments, the card image response issubstantially in the form described in 2109 a. In some embodiments, theW-CONNECTOR may then display a payment account and/or card enrollmentform with the retrieved card image and any data retrieved from theaccount issuer pre-filled 2325. The consumer may then complete anyremaining information required by the enrollment form and save theaccount in their virtual wallet 2326. In some embodiments, theW-CONNECTOR may then register or associate the payment account with theconsumer's virtual wallet 2327 and prompt the user that the account hasbeen linked to their wallet 2328 (see FIG. 12 a for an example cardaccount success enrollment interface).

FIGS. 24 a-j illustrate alternate embodiments of wallet and cardenrollment via the W-CONNECTOR. In some embodiments, the wallet and cardenrollment may occur on a normal web interface, a mobile web interface,a voice-controlled interface, and/or other interfaces. FIG. 24 aillustrates alternate embodiments of linking 2401 a website for anissuer, merchant, and/or a like web service to the wallet service. FIGS.24 b-d illustrate example embodiments of providing users a method ofenrolling in a wallet program through an issuer's website. For example,in some embodiments, the user may access an introductory screen 2402which may provide detail on the wallet service, and the user may bepresented a number of options in enrolling in the wallet service 2403(including an express enrollment or card addition option, a standardenrollment or card addition option, and/or the like). The user may thenbe presented with wallet-implemented overlays 2404 in which to enterwallet account information (either for a new or existing account),wallet-implemented overlays 2404 being alternative overlays to walletoverlay 2003. The user may use card selection overlays 2405 to choosecards to associate with the wallet account, and may confirm theselection. The overlays 2404 and 2405 may send all collected informationdirectly to the wallet server.

FIGS. 24 e-f illustrate further alternate example embodiments ofproviding users a way of enrolling in the wallet program. For example,the user may, while exclusively using the issuer's website, enter cardselections 2406 (alternatively, the user may do so similar to theembodiment provided in FIGS. 20 c-d). While remaining on the issuer'swebsite, the user may also provide information for logging into, orsigning up for, a wallet account 2407.

FIGS. 24 g-j illustrate further alternate example embodiments of theinterface in FIGS. 20 b-d. In some embodiments, the wallet login andsign-up options 2015 and 2017 may resemble 2408 and 2409, respectively.The sign-up form for a wallet account may be included on the main pageas shown at 2410. Similar to 2012, the user may be presented with a setof available cards 2411 which may be selectable for a wallet account.The user may also be able to specify which card to set as a default cardfor the wallet. In addition to the information collected in FIGS. 20b-d, the issuer may request that the user provide a set of securityquestions and answers 2412, as well as security codes 2413. The issuermay provide the user with a confirmation screen 2414 once the processhas been completed.

FIG. 25 shows a block diagram illustrating example multi-directionalservice connections in some embodiments of the W-CONNECTOR. In someembodiments, the W-CONNECTOR 2501 enables seamless multi-directionalconnections and communications among multiple entities, including, butnot limited to, consumers 2503, issuers 2505, merchants 2507, marketingpartners 2509, loyalty partners 2511, shipping partners 2513, socialnetwork 2515, other wallet services 2517, and/or other third parties2519. Entities on the left 2530 may connect to either entity on theright 2580 through the W-CONNECTOR. In one implementation, for example,a consumer may request his bank issuer 2505 to update, through theW-CONNECTOR, the newly issued credit card number with all merchants 2535on the W-CONNECTOR consumer profile.

FIGS. 26A-26C show example user interfaces in some embodiments of theW-CONNECTOR. In some embodiments, a consumer may log-in the W-CONNECTORaccount and access and/or edit the account information. The accountinformation may include, such as, but not limited to: account profile2601, address book 2603, payment methods 2605, shipping carriers 2607,loyalty programs 2609, preferences 2611, social network 2613,transaction history, browser cookies, offers, coupons, alerts, otherwallet accounts, and/or the like. Account profile 2601 may include suchas, but not limited to, user name, user email address, user log-incredentials, user log-in password, and/or the like. The address book mayinclude more than one address, and the user may select an address to useas default shipping and/or billing addresses. The user may providepayment methods 2605 and choose default payment method to use forpurchases. In some implementations, the user may request issuers toprovide payment methods to the account through the W-CONNECTOR. In someimplementations, the balance 2621 of each payment method may display foruser's convenience. The user, or the shipping carriers, or otherentities, may provide user shipping accounts. Referring to FIG. 26B, theuser or loyalty program providers, or other entities, may provide user'sloyalty accounts and respective balance on the loyalty accounts to theW-CONNECTOR account. The user may also provide and/or edit userpreferences. The user preferences 2611 may provide user's preferences onany products. It may be provided by the user, or other entities. It maybe aggregated from user's prior purchases. For example, when user ordersfood through a merchant website and noted that user is allergic topeanuts and wishes no peanuts should be contained in any food ordersfrom the user. The W-CONNECTOR may store this food preference into theuser's account. When the user makes food orders through this or othermerchant, the no-peanuts user preference may be pre-populated to theorders so that the user may not need to enter this again. Other userpreferences such as clothes sizes, color, and/or the like may be added.The user or other entities may provide his social network account to theW-CONNECTOR and provide controls as to the share privileges 2613. FIG.26C shows an example user interface illustrating W-CONNECTORpre-populating shirt size during purchase to provide seamless userexperience in some embodiment of the W-CONNECTOR.

FIG. 27 shows a data flow diagram illustrating example multi-directionalconnections in some embodiments of the W-CONNECTOR. As discussed in FIG.25, source entities, target entities, and requestor entities may includeentities such as, but not limited to: consumers, issuers, merchants,marketing partners, loyalty partners, shipping partners, social network,other wallet services, and/or other third parties. In some embodiments,the Source Entity Server 2703 may first determine which entities need tobe involved in fulfilling the connection, and generate a sourceaction-connect request message 2760. In one embodiment, some entitiesmay give the W-CONNECTOR server a general inquiry regarding a consumer'saccount and inquire if it needs any updates. The W-CONNECTOR server mayaccess the source entity server information about the account andcompare the information with the accounts stemming from the consumer'saccount and see if the source entity needs any updates. If so, theW-CONNECTOR server may generate an action-connect request 2723 on behalfof the source server. It may provide this action-connect request messageallowing the source entity to effect this message. Alternatively, in oneembodiment, the W-CONNECTOR server may itself generate this message andsend it on behalf of the source entity to the target entity. Forexample, if it is determined an address at the merchant is a neweraddress because the modification date for the address field is newerthan that stored in the source entity server, the W-CONNECTOR maygenerate an update action for the address information type by populatingthe source entity and the target entity information into anaction-connect request message (e.g., the source entity being the entityhaving the newer date address information, and the target entity beingthe entity having the older date address information). For example, anexample PHP/SQL command listing, illustrating substantive aspects ofquerying the Bank of America database for modification date of defaultaddress, is provided below:

<?PHP header(‘Content-Type: text/plain’);mysql_connect(“254.93.179.112”,$DBserver,$password); // access databaseserver mysql_select_db(“BoACustomerProfile.SQL”); // select databasetable to search //create query for BoACustomerprofile data $query =“SELECT modification_date FROM BoACustomerProfileTable WHERE customer_IDLIKE ‘%’ $123abc” default_address LIKE ‘%’ $address”; $result =mysql_query($query); // perform the search querymysql_close(“BoACustomerProfile.SQL”); // close database access ?>

An example PHP/SQL command listing, illustrating substantive aspects ofquerying the Amazon database for modification date of address, isprovided below:

<?PHP header(‘Content-Type: text/plain’);mysql_connect(“254.93.179.112”,$DBserver,$password); // access databaseserver mysql_select_db(“AmazonCustomerProfile.SQL”); // select databasetable to search //create query for AmazonCustomerProfile data $query =“SELECT modification_date FROM AmazonCustomerProfileTable WHEREcustomer_ID LIKE ‘%’ $123abc” default_address LIKE ‘%’ $address”;$result = mysql_query($query); // perform the search querymysql_close(“AmazonCustomerProfile.SQL”); // close database access ?>

First, the W-CONNECTOR may load an action template from an actiontemplate table of the W-CONNECTOR database. An example of the actiontemplate is provided as follows:

POST /updateaddress.php HTTP/1.1 Host: www.W-CONNECTOR.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <security_template_level>subclass:abc3.5</security_template_level><wallet_customer_ID>xyz123</wallet_customer_ID <requestor>  <context>  <role1>source    <entity1> </entity1>    <info_type></info_type>   <action></action>   </role1>   <role2>target    <entity2> </entity2>   <info_type> </info_type>    <action> </action>   </role2>  </context></requestor>

When the return values are newer for BoA, the W-CONNECTOR may determine(e.g., as a role) that any newer modified entity is a source for thatinformation type. As such, it will pre-populate a request as follows:

POST /updateaddress.php HTTP/1.1 Host: www.W-CONNECTOR.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <security_template_level>subclass:abc3.5</security_template_level><wallet_customer_ID>xyz123</wallet_customer_ID <requestor>BoA <context>mobile   <role1>source    <entity1>BoA</entity1>    <BOA_ID>abc123</BOA_ID>     <BOA_account_number>PAN 5678 12349012</BOA_account_number>    <info_type>Address</info_type>    <current_default_address> 123 peace st., New York, NY10001</current_default_address>    <action>update:BoA_addressvalue$</action>   </role1>   <role2>target    <entity2> </entity2>   <info_type> </info_type>    <action> </action>   </role2>  </context></requestor>

Then the W-CONNECTOR may determine which fields require updates attarget and pre-populate the request info as follows:

POST /updateaddress.php HTTP/1.1 Host: www.W-CONNECTOR.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <security_template_level>subclass:abc3.5</security_template_level><wallet_customer_ID>xyz123</wallet_customer_ID <requestor>BoA     <context>mobile         <role1>source           <entity1>BoA</entity1>              <BOA_ID>abc123</BOA_ID>             <BOA_account_number>PAN 5678 1234 9012</BOA_account_number>          <info_type>Address</info_type>             <current_default_address> 123 peace st., New York, NY10001</current_default_address>           <action>update:addressvalue$</action>         </role1>         <role2>target          <entity2>Amazon</entity2>              <Amazon_ID>joesmith@gmail.com               </Amazon_ID>             <Amazon_password>jkwe%d134              </Amazon_password>          <info_type>Address</info_type> #Current address on file priorto updadte: 567 Fashion Avenue, Charlotte, NC 270001#          <action>update:address value$</action> #Address now updatedto: 123 peace st., New York, NY 10001#         </role2>      </context></requestor>

In some embodiments, the Source Entity Server 2703 may send a sourceaction-connect request message 2723 (e.g., see examples below associatedwith messages 2735 and 2721) to the W-CONNECTOR Server 2705. The sourceaction-connect request message is constructed based on the determinedentities, roles and context. Then the W-CONNECTOR Server may check theuser access privileges and determine if the requested action ispermitted for the connection type and context. Following that theW-CONNECTOR Server may query for user record 2727 from the W-CONNECTORDatabase 2703. For example, the database may be a relational databaseresponsive to Structured Query Language (“SQL”) commands. TheW-CONNECTOR server may execute a hypertext preprocessor (“PHP”) scriptincluding SQL commands to query the database for details of the userrecord. For example, if an address needs to be updated between entities(as discussed below in example message 2721), an example PHP/SQL commandlisting, illustrating substantive aspects of querying the W-CONNECTORdatabase 2727, is provided below:

<?PHP header(‘Content-Type: text/plain’);mysql_connect(“254.93.179.112”,$DBserver,$password); // access databaseserver mysql_select_db(“CustomerProfile.SQL”); // select database tableto search //create query for Customerprofile data $query = “SELECTAddress_book FROM CustomerProfileTable WHERE customer_ID LIKE ‘%’$123abc”; //other info type may be put here depending on the context$result = mysql_query($query); // perform the search querymysql_close(“CustomerProfile.SQL”); // close database access ?>

Then the W-CONNECTOR Database may reply with the user record 2729. Afterreceiving the user record the W-CONNECTOR Server may performaction-connect 2731. Then the W-CONNECTOR Server may store the changesafter the action 2733. For example, the W-CONNECTOR server may issuePHP/SQL commands similar to the example listing below to store thechanges after action data 2733 in a database:

<?PHP header(‘Content-Type: text/plain’);mysql_connect(″254.92.185.103”,$DBserver,$password); // access databaseserver mysql_select(″CustomerProfile.SQL″); // select database to appendmysql_query(“INSERT INTO CustomerProfileTable (timestamp Address_book)VALUES (time( ),$Address_book”); // add data to table in databasemysql_close(″CustomerProfile.SQL″); // close connection to database ?>//other info type may be put here depending on the context

After that the W-CONNECTOR Server may send a W-CONNECTOR action-connectrequest 2735 (e.g., see examples below associated with messages 2721) tothe Target Entity Server 2707. When the W-CONNECTOR action-connectrequest is received, the Target Entity Server may query for user record2737 from Target Entity Database 2713. An example command listing,illustrating querying the Target Entity Database 2737 may be at leastthe same form as 2727. Then the Target Entity Database may return theuser record 2739. After that the Target Entity Server may perform theaction-connect 2741. Following that the Target Entity Server may storethe changes after the action-connect 2743 to the Target Entity Database.Then the Target Entity Server may send an action-connect completedmessage with the target entity 2745 to the W-CONNECTOR Server. Afterreceiving the action-connect completed message the W-CONNECTOR Servermay store the message 2747 in the W-CONNECTOR Database. Following thatthe W-CONNECTOR Server may send an action-connect completed message 2749to the Source Entity Server. An example action-connect completed messagesubstantially in the form of a HTTP(S) POST message includingXML-formatted data, 2749, is provided below:

POST /actioncomplete.php HTTP/1.1 Host: www.W-CONNECTOR.comContent-Type: Application/XML Content-Length: 667 <?XML version = “1.0”encoding = “UTF-8”?> <wallet_customer_ID>xyz123</wallet_customer_ID<action_request>      <requestor>BoA</requestor>     <source>BoA</source>      <target>Amazon</target>     <action>update: address value$</action> <action_request><action_acknowledgment>      <timestamp>2006-01-12 12:00</timestamp>     <current_default_address>123 peace st., New York, NY10001</current_default_address>     <updated_entities>Amazon</updated_entities></action_acknowledgment>

Finally the Source Entity Server may store the action-connect completedmessage 2751 to the Source Entity Database 2711. Alternatively, theRequestor Entity 2701 may send a requestor action-connect request 2721to the W-CONNECTOR Server. An example action-connect request (e.g.,issuer Bank of America (“BoA”) requests the issuer Bank of America toupdate default address with merchant Amazon), substantially in the formof a HTTP(S) POST message including XML-formatted data, (e.g., 2723,2721, 2735), is provided below:

POST /updateaddress.php HTTP/1.1 Host: www.W-CONNECTOR.com Content-Type:Application/XML Content-Length: 667 <?XML version = “1.0” encoding =“UTF-8”?> <security_template_level>subclass:abc3.5</security_template_level><wallet_customer_ID>xyz123</wallet_customer_ID <requestor>BoA     <context>mobile         <role1>source           <entity1>BoA</entity1>              <BOA_ID>abc123</BOA_ID>             <BOA_account_number>PAN 5678 1234 9012</BOA_account_number>           <info_type>Address</info_type>             <current_default_address> 123 peace st., New York, NY10001</current_default_address>            <action>update:BoA_addressvalue$</action>         </role1>         <role2>target           <entity2>Amazon</entity2>              <Amazon_ID>joesmith@gmail.com               </Amazon_ID>             <Amazon_password>jkwe%d134              </Amazon_password>           <info_type>Address</info_type> //Current address on fileprior to updadte: 567 Fashion Avenue, Charlotte, //NC 270001           <action>update:BoA_address value$</action> //Address nowupdated to: 123 peace st., New York, NY 10001         </role2>     </context> </requestor>

Another example action-connect request (e.g., payment network Visarequests the issuer Chase to update card new expiration date withmerchant Best Buy), substantially in the form of a HTTP(S) POST messageincluding XML-formatted data, (e.g., 2723, 2721, 2735), is providedbelow:

POST /updatecardexpirationdate.php HTTP/1.1 Host: www.W-CONNECTOR.comContent-Type: Application/XML Content-Length: 667 <?XML version = “1.0”encoding = “UTF-8”?> <security_template_level>subclass:yua1.3</security_template_level><wallet_customer_ID>xyz123</wallet_customer_ID<requestor>payment_network:Visa      <context>web         <role1>source           <entity1>Chase</entity1>             <Chase_ID>ewa123</Chase_ID>             <Chase_account_number>PAN 1234 98761098</Chase_account_number>           <info_type>Chase_card_expiration_date            </info_type>           <action>read: Chase_card_expiration_date           value$</action>         </role1>         <role2>target           <entity2>Best Buy</entity2>              <BestBuy_ID>joesmith@gmail.com               </BestBuy ID>             <BestBuy_password>jkwe%d134             </BestBuy_password>           <info_type>Chase_card_expiration_date            </info_type>//Current Chase card expiration date on file prior to updadte: 10/2005           <action>update: Chase_card expiration date value$</action>//Chase card expiration date now updated to: 10/2010         </role2>     </context> </requestor>

Another example action-connect request (e.g., wallet provider Walletrequests the merchant Amazon to T-shirt size profile with V.me),substantially in the form of a HTTP(S) POST message includingXML-formatted data, (e.g., 2723, 2721, 2735), is provided below:

POST /updateTshirtsize.php HTTP/1.1 Host: www.W-CONNECTOR.comContent-Type: Application/XML Content-Length: 667 <?XML version = “1.0”encoding = “UTF-8”?> <security_template_level>subclass:dfg2.2</security_template_level><wallet_customer_ID>xyz123</wallet_customer_ID<requestor>wallet_provider: V.me      <context>mobile        <role1>source            <entity1>merchant:Amazon</entity1>              <Amazon_ID>joesmith@gmail.com               </Amazon_ID>             <Amazon_password>jkwe%d134              </Amazon_password>           <info_type>Preferences:            Tshirt_size</info_type>           <action>read: Preferences: Tshirt_size           value$</action>         </role1>         <role2>target           <entity2>wallet_provider: V.me</entity2>              <Vme_ID>joesmith@gmail.com               </Vme ID>             <Vme_password>jkwe%d134              </Vme_password>           <info_type> Preferences:            Tshirt_size</info_type>//Currently no T-shirt size on file            <action>update:tshirtsize value$</action> //T-shirt size now added: large#         </role2>     </context> </requestor>

After the requestor action-request is completed, the W-CONNECTOR Servermay send a requestor action-connect acknowledgement message 2753 back tothe Requestor Entity.

FIG. 28 shows a logic flow diagram illustrating examplemulti-directional connections in some embodiments of the W-CONNECTOR.First the W-CONNECTOR Server may receive a source action-connect requestmessage from a source entity server 2802. Then the W-CONNECTOR Servermay parse the action-connect request to determine entities and action(e.g., the source entity, target entity, information type, action,context, and so forth) 2803. After that the W-CONNECTOR Server may querythe W-CONNECTOR database to retrieve access privileges for thedetermined entities and action 2805. Following that the W-CONNECTORServer may check the user access privileges to determine if therequested action is permitted for the connection type and context 2807.If the requested action is not permitted, then the W-CONNECTOR Servermay generate an “action not permitted” message and send to the sourcerequestor 2811, and the processor may end. If the requested action ispermitted, then the W-CONNECTOR Server may check if any action on it isneeded 2813. If an action is needed, then the W-CONNECTOR Server mayquery the W-CONNECTOR Database and retrieve the user record 2815. Afterthat the W-CONNECTOR Server may perform an action-connect 2817.Following that the W-CONNECTOR Server may store the changes to theW-CONNECTOR Database after the action 2819. Then the W-CONNECTOR Servermay send a W-CONNECTOR action-connect request to the Target EntityServer 2821. After receiving the request the Target Entity Server mayquery the Target Entity Database and retrieve the user record 2823. Thenthe Target Entity Server may perform an action-connect 2825. Followingthat the Target Entity Server may store the changes to the Target EntityDatabase after the action-connect 2827. The W-CONNECTOR Server mayreceive the action-connect completed message with target entity from theTarget Entity Server 2829. After receiving the action-connect completedmessage the W-CONNECTOR Server may store the action-connect completedmessages to the W-CONNECTOR Database 2831. Then the W-CONNECTOR Servermay send the action-connect completed message to the Source EntityServer 2833. Finally the Source Entity Server may store theaction-connect completed message to the Source Entity Database.Alternatively the W-Connect Server may receive a requestoraction-connect request message from a Requestor Entity Server 2801.After the requestor action-connect request is completed the W-CONNECTORServer may send a requestor action-connect completed message to theRequestor Entity Server 2835.

FIGS. 29A-29G show example access privileges in some embodiments of theW-CONNECTOR. Referring to FIG. 29A, in some embodiments, the user accessprivileges settings are n-dimensional including axes of settings. Forexample, one axis of settings may be role1 2901 a, which may be sources.One axis may be role2, which may be targets 2902 b. One axis may beentity 2901 c, which may include general entities such as, but notlimited to: issuers 2902 c, merchants 2903 c, consumers 2904 c, paymentnetwork 2909 c, wallet provider 2912 c; and specific entities such as,but not limited, Bank of America 2905 c, Chase 2906 c, Amazon 2907 c,Best Buy 2908 c, Visa 2910 c, Mastcard 2911 c, Wallet 2913 c, googlewallet 2914 c; and/or the like. A list of general entities is discussedin FIG. 25. Another axis of settings may be actions 2901 d, which mayinclude read 2902 d, write 2903 d, execute 2904 d, and others. A list ofaction types is discussed in more details in FIG. 29G. Yet another axismay be information type 2901 e, which may include profile, address book,payment methods, and others. A list of information type is discussed inmore details in FIG. 29G. Another axis may be requestors 2901 f, whichmay include any entities discussed above. Another axis may be context2901 g, which may include mobile, web, in person, decoupledtransactions, 2-device transactions, near field communication, knownmerchant. All axes may be reconfigured in many different ways and stillmaintain its settings.

In some embodiments, a data structure may be generated for any cell inthe n-dimensional array of settings, where each axis of array may berepresented by these visual access handles (e.g., 2901 a, 2901 e, 2901f, 2901 g, etc.). Alternatively, the axes dimensions may be representedby database tables, wherein any of the value fields in the databasetables may be key fields that are joinable with other database tables.

Referring to FIGS. 29B and 29C, in some embodiments, an access privilegemay be defined between a source entity 2901 and a target entity 2903.Access privileges may also be defined for an entity category, forexample, issuers 2907, merchants 2913, consumers 2915, and/or the like,and it may also be defined for a specific entity, for example, issuerslike Bank of America (BoA) 2909, Chase 2911, merchants like Amazon,BestBuy, consumers like owner, bond 1 (spouse of the owner), bond 2(child 1 of the owner), shipping carriers like Fedex, UPS, and/or thelike. In some embodiments, when the W-CONNECTOR enables a connectionbetween entities, the access privileges may be checked to determine whatactions and information types are allowed for this connection. Detaileddiscussions of access privileges between a source and a target are shownin FIGS. 29D-29F.

In some embodiments, access privileges may be different for differentcontexts of the connection. The connection may be requested via contextsincluding but not limited to, mobile 2921, web 2923, in-person 2925,decoupled transactions 2927, 2-device transactions 2929, near fieldcommunication (“NFC”) 2931, known merchant 2933, and/or the like. Insome embodiments, decoupled transactions allow decoupling a digitalwallet checkout experience from having to completed in the same domainor platform where it started. Decoupled transactions enable consumers tomanage and authorize transactions through their own personal preferredchannel (e.g., a personal device) regardless of the platform there wereon initially. Two-device transactions may allow transactions to beauthorized by two difference devices of the owners.

In some embodiments, a connection may be initiated by a source entity ora target entity to communicate between the source and the target throughthe W-CONNECTOR. In other embodiments, a connection may be initiated bya requestor entity 2935 which requests communication between a sourceentity and a target entity through the W-CONNECTOR. For example, anissuer may initiate a connection to a target entity to push a newlyissued card information to the target entity. For another example, aconsumer may initiate a connection and request a merchant, as a sourceentity, to update address with an issuer, as a target entity. Any entityin FIG. 25 may be a requestor entity.

FIG. 29D shows example access privileges when the requestor entity,source entity, and the target entity are issuers, and the transactioncontext takes place in a mobile environment 2937. Access privilege isshown for each action type 2947 and information type 2949. A list ofexample actions and information types is discussed in FIG. 29G.Referring to FIG. 29D, when connection is requested to be established bya first issuer between a second issuer and a third issuer in a mobileenvironment, for an example, profile may be viewed with tokenized 2949,while full view is not allowed 2953. Masked view is allowed and alsolocked 2951 so that this privilege type may not be changed. For anotherexample, social network may be added 2955 based on conditions.

FIG. 29E shows example access privileges when the requestor entity is anissuer, the source entity is an issuer, the target entity is Bank ofAmerica, and the transaction context takes place in a mobile environment2957. As an issuer, Bank of America may include some access privilegesthat may be the same as FIG. 29D, and some access privileges that may beunique. FIG. 29F shows example access privileges when the requestorentity is an issuer, the source entity Bank of America, the targetentity is merchant Amazon, and the transaction context takes place in amobile environment.

FIG. 29G shows a list of example actions and information types.

FIGS. 30A-30B show example user interfaces illustrating W-CONNECTORconnecting wallet with issuers in some embodiments of the W-CONNECTOR.In some embodiments, consumers have grown accustomed to expect seamlessuser experience and simplicity at the physical point of sale. Consumersusing mobile banking applications on their mobile devices may beauthenticated by their issuer using existing issuer credentials.Sensitive information are typically not entered and mainly viewed forenhanced security. Issuer mobile applications may be powered with theW-CONNECTOR capabilities, which may provide the following features: 1)Consumer may be authenticated, provisioned and distributed by theissuer; 2) the features may be embedded within the issuer App; 3)powered by wallet SDK(s); 4) Enabling technologies and preferencesselected by the issuer; 5) Issuer embeds the wallet SDK in their mobileapp; 6) Issuer updates their existing installed mobile app base; 7)Issuer updates their T&Cs to include the usage of the app for Payment;8) Issuer may automatically enable the SDK for all the user's cards orprompt the user to select the cards to be enabled with the SDK; 9)Issuer may elect to link other services to the wallet SDK payment; 10)Issuer provides a data feed of the provisioned users to wallet fortracking and analytics. In some embodiments, user experience At PhysicalRetail: 1) User shops at a Wallet participating merchant store; 2) Whenthe user is ready to pay at the cashier or self checkout; 3) The userselects the bank mobile app he wants to use for this payment; 4) Thisimplicitly implies that the user is electing to use this issuer card forcompleting this transaction; 5) User is authenticated to his bank usinghis bank mobile credentials based on the issuer authentication levelssettings; 6) Upon successful user authentication, bank enables theWallet SDK for the given card; 7) User presents his phone to theterminal to complete the payment using card NFC or card QR.

In some embodiments, an issuer mobile app contains only issuer cards(i.e., no competing cards). Payment network provides the issuer theWallet SDK package and documentation. In some embodiments, issuers mayintegrate Wallet SDK in their own apps and can test against Paymentcertification process as usually done for the base Payment networkproducts. In some embodiments, issuers have full view of thetransactions and the consumers receive the service and the supportdirectly from their issuers. No federation required in this phase, givenit is and issuer provided service for the issuer cards and authenticatedby the issuer. In some embodiments, Wallet can provide additionalcapabilities if requested by the issuer. In some embodiments, Walletmobile reference app is available for issuers who do not have a mobileapp or do not wish to integrate the Wallet SDK into their existing apps.In some embodiments, Wallet may benefit by taking advantage of theinstalled base of mobile banking. Issuers are vested deeply in promotingWallet as it is a direct promotion of their own brand and services.Wallet can focus on solving the issues that would accelerate acceptanceand differentiate Wallet and Payment network from the competition.

In some embodiments, for Consumers desiring to benefit of the Walletcapability for in-app payment and in e-commerce, the consumer mayneed: 1) to create a Wallet account, with Wallet credentials. Theconsumer can create the account directly with Wallet through the Walletdestination site or Wallet mobile app or Lightbox during shopping. Theconsumer is asked to chose the participating Wallet bank from which tolink his information to wallet. 2) Link his information at his issuersto his wallet created account. The consumer is redirected to his issuerwhere he logs in and data provisioning to Wallet occurs. Some consumersmay elect to create a Wallet account and manually enter theirinformation even if their issuer is Participation. For non-participatingbanks, the consumer may enter the information manually in wallet. If aconsumer has established a Wallet account and credentials, the consumercan log on to his Wallet account through his issuer online banking. Theconsumers logs on to his issuer online banking and clicks on wallet. Theconsumer is federated from their issuers to wallet. Wallet identifiesvalidates the federation for the given issuer and for the given user.The consumer may see a Wallet view providing a specific issuer onlyinformation.

The consumers may not be able to see the cards and services notassociated with this issuer. If the consumer elects to see the cards notbelonging to this issuer, the consumer may log on to Wallet with theWallet credentials. Wallet may have multiple SDK, certain SDKs may befor issuers, others may be for merchants and partners. In addition tothe core payment functionality, the SDK package may include the abilitythe enroll, add payment instruments, authentication and credentialmanagement, device finger printing all package in a secure hardened. TheSDK has a set of modules that the issuer can elect to use or providetheir own. The intention is not to create a custom development andensure that the base is simple and modularized to reduce the futuresupport needs. The VDC may be the storefront for distributing theSDK(s). Wallet may create a reference app that may use the modularizedSDK to support the smaller issuers as well other markets outside the US.The issuer may control the user experience based on guidelines providedby wallet. Wallet provides guidelines to match the SDK functionality andto ensure consistent user experience and performance. The merchant SDKmay have different merchant features. The user experience and theauthentication in a merchant SDK is a Wallet standard and all thecredentials used for the payment may be Wallet credentials. the plan isto partner with other third parties to enhance the functionality and thevalue proposition Package. Make it simple, modularize, enhance security,guide and Certify.

FIGS. 31A-31I show example user interfaces and a logic flow diagramillustrating wallet overlay on mobile devices (e.g., mobile phones,tablets, etc.) in some embodiments of the W-CONNECTOR. In someembodiments, Wallet may enable a tablet-optimized checkout to helpconsumers intuitively and seamlessly checkout online on their iPad byleveraging payment platform. The W-CONNECTOR may increase flowconversion through the tablet checkout channel; Increase overall mobileplus tablet transaction volume; Incremental new consumer adoptionthrough the tablet checkout channel. In some implementations, for thecurrent mobile web checkout experience, apply the updates for the mobile(iPhone & iPad) checkout that includes adding a new payment method,checkout details and other UX updates.

In some embodiments, checkout details treatment includes: display thepurchase details such as shipping, discount, etc. as an expand/collapsesection in the review page. Other features include: I Increase thedimensions of the checkout lightbox for the iPad flow; reduce number of“touches” into fields with auto-next; use a lightbox overlay from themerchant's site for the iPad flow; maintain the checkout windowdimensions in both the landscape and portrait modes; enhancements forthe visual design and interaction elements. standard handling of thefooter UI.

In some embodiments, in addition to the above, additional frameworkchanges to the mobile checkout experience would improve the userexperience and funnel conversion for both new and existing Walletconsumers.

In some embodiments, change the initial landing page that currentlydisplays the “Create an Account” and “Sign In” links to the “Log In”page directly. This page also has a “Create an Account” link and isstandard with other Web & mobile sites.

In some embodiments, as upon sign-up or login, the consumer may bedirected to the Review & Pay page, without any greyed out areas. Therethey can submit their shipping, payment and billing details in anon-linear flow. If there is no information yet, the consumer can beginadding in their details.

In some embodiments, the ability to add a new payment method during thecheckout flow, and be able to select it for the current checkout. Theability to remove a payment method during the checkout flow, whichshould then be removed from the consumer's wallet.

In some embodiments, as a consumer, I want to be reduce the number ofsteps and touches when I checkout on my iPad device. Given: A consumeris shopping on the merchant site via their mobile browser on their iPadAnd: a merchant has integrated and has the Wallet buy widget availableon their site. When: the Wallet checkout lightbox is loaded. Then: theconsumer should still see the merchant site behind the lightbox for allpages (sign up, log in, payment). And: the spacing and field formatsshould be optimized for the iPad retina & non-retina displays for allpages (sign up, log in, payment). And: interaction elements (buttons,links, behaviors) use iOS standard experiences for all pages (sign up,log in, payment).

In some embodiments, as s a consumer, I don't want to be shown multiplepages to choose between logging in and signing up. Given: A consumer isshopping on the merchant site via their mobile browser on their iPad.And: a merchant has integrated and has the Wallet buy widget availableon their site. When: the Wallet checkout lightbox is loaded. Then: theconsumer should be shown a log in page first that may also have a linkto sign up.

In some embodiments, as a Wallet consumer, I want to be able to see whatinformation is required and complete checkout non-linearly to providethe required payment information. Given: A consumer is shopping on themerchant site via their mobile browser on their iPad. And: a merchanthas integrated and has the Wallet buy widget available on their site.When: the Wallet checkout lightbox is loaded. And: the consumer haseither signed up or logged in successfully. Then: the consumer may firstbe directed to review page to confirm or provide the ship, pay or billinfo individually regardless of having a saved profile or not.

In some embodiments, as a Wallet consumer, I want to be able to add new,remove and edit credit cards in my wallet directly from checkout on myiPad device. Given: A consumer is shopping on the merchant site viatheir mobile browser on their iPad. And: a merchant has integrated andhas the Wallet buy widget available on their site. When: the Walletcheckout lightbox is loaded. And: the consumer has either signed up orlogged in successfully. Then: the consumer can click from the reviewpage to the Payment Method page to select or make changes to theirwallet. And: the consumer can add additional credit cards to theirwallet from the Payment Method page. And: the consumer can edit anexisting or newly added credit cards in their wallet from the PaymentMethod page. And: the consumer can remove any existing or newly addedcredit cards in their wallet from the Payment Method page.

In some embodiments, as a Wallet merchant, I want an optimized mobileexperience for my customers who are transacting on my site on their iPadwithout having to configure a separate mobile tablet configuration.Given: A merchant who has on-boarded and integrated Wallet on theirsite. And: the merchant has not configured a separate setting to enablemobile. And: a consumer is shopping on the merchant site via theirmobile browser on their iPad. When: the consumer touches the Wallet buywidget after adding items to the cart. Then: the checkout lightboxshould display as an overlay on top of the merchant site in aniPad-optimized format and UX for both retina & non-retina displaythrough the end-to-end checkout experience.

In some embodiments, on the Review & Pay page, move the checkout detailsthat lists out the Subtotal, Shipping, Gift Wrap, Discount, Misc, Taxinfo under the total price as an expand/collapse. Originally this wasdisplayed at the bottom of the page, which forced the consumer to looktowards the bottom of the review page in order to confirm theappropriate amount. The amount should be the first value for theconsumer to confirm their purchase.

In some embodiments, in both landscape and portrait modes, the checkoutlightbox should have the same dimensions regardless of orientation. Forretina displays on iPhone & iPad, the display may need to be double theresolution for visual assets (“@2x˜ipad” suffix for images).

In some embodiments, for the tablet checkout, the checkout widget shouldbe displayed as a lightbox overlay on top of the merchant checkout. Soboth in portrait and landscape views, the lightbox should be overlainover the merchant's site. The background should be greyed out in orderto call attention to the checkout lightbox.

In some embodiments, the input fields in the checkout light should focusthe text field sequentially for the next responder chain through theform fields. The order should go from left-to-right and top-to-bottom.The widget may recognize the user agent as iPad, which would then renderthe tablet checkout overlay as a lightbox.

In some embodiments, the mobile checkout may use a full page overlaythat covers the screen completely. Currently, the links on the reviewpage use a “Change” hyperlink. Replace the hyperlink with the HTML5mobile standards to make the enter row a link for the Shipping, PaymentMethod and Billing update functions.

In some embodiments, the current mobile links for the footer aredifficult for consumers to open. So instead of the standard Webhyperlinks for the Terms of Service, Privacy Policy and Help, use theHTML5 mobile standards of using the horizontal bar as the footer links.

In some embodiments, for text or mixed-text fields, display the standardkeypad by default. For digit-specific fields like the credit card numberfield, the keypad should use the numeric keypad only to improve the userexperience. Images for issuer card art may be loaded and displayedaccording to the size ratio specifications. The default card art imagesfor other cards should have the “@2x_ipad” suffix. Images should notchange their aspect ratio going from non-retina to retina display, orfrom portrait to landscape orientation.

In some embodiments of the Non-linear Checkout Flow, from the merchantcheckout page, the following page that is displayed in the currentmobile flow is the Wallet Create/Sign In page. This page is a redundantstep that impedes flow conversion through checkout for the tabletexperience. Therefore the Wallet Create/Sign In page should be removedand the initial step should just display the Sign In page directly. Thatpage still allows the user to sign up through a single page followingclicking the “Create an Account” link from this page.

In some embodiments, the “Review and Continue” page may now be thecentral page for the Wallet checkout flow. So immediately following signin or enrollment, the consumer may be directed to the “Review andContinue” page. If the consumer doesn't have any saved info in CS(getShippingDetail and getPaymentProfile), then the fields for shipping,payment method and billing may be blank. If the consumer does have savedinfo in CS, then the fields may be pre-populated on the “Review andContinue” page. If the non-Paymentcredit card being used has not yetbeen validated (CVV) and the consumer tries to complete the transactionfrom the “Review and Continue” page, then the consumer may be directedto update their payment method info. The credit card form fields may bepre-populated (masking the PAN except for the last four digits) and maybe greyed-out/disabled. A message may be displayed to the consumer thatthey need to enter in their CVV in order to validate their credit card.The field cursor should be on the CVV field in order for the consumer tocomplete their validation.

In some embodiments, if the first card returned by CS is expired and theconsumer tries to complete the transaction from the “Review andContinue” page, then the consumer may be directed to the payment methodpage to change or add a new payment method. A visual call-out may bedisplayed to the consumer for cards that are expired in their wallet.The expired card may be greyed-out/disabled from being selectable. Theconsumer can then go through completing each of the shipping, paymentmethod and billing in a non-linear flow. Upon every submission for addor update to the shipping, payment method or billing pages, the consumeris return back to the “Review and Continue” page where they can completethe transaction.

In some embodiments, when the consumer enters in their shipping addressand selects that they want to use the address as their billing for thepurchase, then after continuing back to “Review and Continue” page boththe shipping and billing fields should have the addresses. And from the“Review and Continue” page, the shipping address should be validated(“validatePurchase”) with CYBS via CS. If there's a mismatch, then theconsumer should be displayed with shipping address suggestion page wherethe consumer can either choose their own shipping or the systemsuggestion. If the consumer chooses the system suggestion, then they areredirected to the “Review and Continue” page to re-confirm thetransaction. Otherwise, the transaction may be submitted for processing.Enabled for US & Canada only at this time.

In some embodiments, the updated Payment Method page should update theUX treatments for the “Back” button, along with the ability to add a newpayment method (“+”). From the same page, a button to edit or remove atthe top of the page should be presented. To edit, the consumer shouldclick the top edit button, then select the row of the payment method tomake the changes (update back to CS). To remove, the consumer shouldclick the top edit button, then touch the “−” icon button to remove thepayment from the wallet (update back to CS). If there are no paymentmethods in the wallet, then the button should be greyed-out/disabled.

FIGS. 32A-32U show exemplary embodiments of value added wallet featuresand interfaces in some embodiments of the W-CONNECTOR. Referring toFIGS. 32A-32B, in some embodiments, user clicks the card on the leftpane and there are no alerts setup for this card. User may see the“Setup Alerts” button for the first time setup. Once the user clicks the“Setup Alerts” button we may present the user with the availablesettings for that particular service provider. User clicks on thecustomize view then he may presented with the current ICE alerts. Onceuser confirms the alert settings he may be presented with his selectionsand with menu option to either Edit or Turn Off alerts. This is anexample of alerts for an external service provider. User clicks the cardon the left pane and there are no alerts setup for this card. User maysee the “Setup Alerts” button for the first time setup. Once the userclicks the “Setup Alerts” button we may present the user with theavailable settings for that particular service provider. Notice that thesettings are different as provided by the issuer. Once user confirms thealert settings he may be presented with his selections and with menuoption to either Edit or Turn Off alerts.

In some embodiments, architecture consists of the following componentinteractions: ROR (UI); Common Services API (User profile and PaymentInstrument); Value Added Services (VAS) for service providerintegration.

Referring to FIG. 32C, VAS may be part of Common Services deployment.VAS API's may be exposed as REST services and UI layer may make thecalls directly instead of going through Common Services. VAS may beresponsible for all outbound communications with the service provider.ICE adapter may be developed in order to transform the VAS request tothe appropriate ICE request to support the existing Alert feature. VASmay be an independent deployable component. Additional adapters may bedeveloped in order support newly on boarded service providers.

Support future offerings from service providers. For example, offers,gift cards, etc. Independently developed and deployable component.Exposes a defined set of API's while hiding the details of the serviceprovider API using adapters. Extensible to support different serviceproviders through the development of adapters. VAS defines the followingset of API's.

Subscription

POST {SP_SERVICE_URL}/subscription DELETE {SP_SERVICE_URL}/subscription

Settings

GET {SP_SERVICE_URL}/settings/user/{CID}PUT {SP_SERVICE_URL}/settings/user/{CID}

Referring to FIG. 32D, the sequence diagram describes a happy casescenario for subscription and settings API through VAS.

In some embodiments, and by way of non-limiting examples only, thefollowing terms may be interpreted as following:

Service A category of service (e.g., Alerts, Offers). Paymentdefines theUI template, UI configuration schema, and APIs between the client andwallet and wallet and the service provider. Service Implementation Animplementation of a service Service Provider One who implements aservice UI Template Service-specific UI template, UI ConfigurationSchema Service-specific configuration template UI ConfigurationConfiguration Schema-specific data, specified by Service Provider for agiven Service Implementation Settings Service-implementation specificSubscription Notification to Service Provider that user is using aspecific service implementation and that the user has accepted thelatest version of the Terms and Conditions Terms An umbrella termdenoting Terms and Conditions, Privacy Policy, Electronic Notice for aspecific Service Implementation

In some embodiments, a 3rd party service provider may integrate toWallet to provide a value-added service (VAS) to a Wallet consumer.Examples of VAS include alerts, offers, and top-up.

FIGS. 32N-32U describes embodiments of the interaction between theWallet consumer and one or more value-add services; the servicelifecycle, the relationships between a consumer, her paymentinstruments, her available services and service providers; theintegration framework between Wallet and a service provider; and thisintegration framework in detail. Referring to FIG. 32N, in someembodiments, after the Wallet user logs into V.me, she is presented witha list of payment instruments on file. As illustrated below, the userthen chooses a card and sees a list of available services for this card.In this case, the chosen card has three available services—alerts,offers, and ATM locator. If the user then chooses the ‘Offers’ service,she is optionally asked to accept terms and conditions, depending onwhether she has previously not accepted this or if the terms havechanged. After accepting the latest terms and conditions, the user isthen able to configure the offers settings. The settings may beservice-specific and could potentially also be serviceprovider-specific; Payment may attempt to minimize serviceprovider-specific settings, to ensure a consistent user experienceacross payment instruments for a given service. Once the offers-specificservice settings have been configured by the user, she may start toreceive offers at the specified email address and phone number. Inaddition, the user may choose to receive the offers on her Walletactivity wall, which is accessible from both the Wallet web site and theWallet mobile app. It illustrates an offer received on the user's mobiledevice.

Referring to FIG. 32O, in some embodiments, services within the SPIframework have a generic, defined lifecycle. It describes therelationship between user, his payment instruments, services,implementation of these services, and the service providers thatimplement these services. The Wallet consumer may have multiple paymentinstruments. There are a set of services associated with each paymentinstrument. Each of these services (for a given payment instrument) isassociated with a service provider; therefore, multiple serviceproviders can provide the same service. When the consumer chooses apayment instrument, she can subscribe to associated serviceimplementations. Because multiple service providers can provide the sameservice, there may be some differentiation allowed. For each service,Payment may define the parameters of differentiation allowed.

Referring to FIG. 32P, in some embodiments, there may be five maininteractions between Wallet and service providers in thisintegration: 1) Onboarding: onboarding of the service provider andon-boarding of each service implementation that the service providerprovides; 2) Subscription to Service: user subscribes to serviceimplementation, when used for the first time or when service versionchanges; 3) User Settings: retrieving and updating of user settings fora given service implementation; 4) Activity Notification: activity itemfor a user related to a service implementation; 5) Activity Settings:updating the settings for a specific activity item. Step 3 specifiessettings for the service (the offer service for a payment instrument)while step 5 specifies settings for an individual activity item (e.g.,acceptance of an received offer). Step 4 enables Wallet to displayactivity information (e.g., alerts, offers) in a consolidated mannerwithin a single application, where the user may filter and search, whilealso enabling Wallet to send push notifications to the Wallet mobileapplication with this activity information (if configured by the user).These five interactions listed above are described in detail in thefollowing sections. Each section describes the interaction with asequence diagram and a protocol specification. In addition, both Walletand each service provider maintain different pieces of the data; thisdata model is described in each of these sections. Finally,communication between Wallet and the service provider needs to besecure.

Onboarding:

Onboarding consists of two phases: Onboarding of the service provider1,Onboarding of each service implementation that the service providerprovides. In some embodiments, two-way communication occurs betweenWallet and the service provider; therefore, Phase 1 (service provideronboarding) requires that Wallet submits its X509 certificate, generatea service provider ID/password for the service provider, and distributeit. The service provider submits its X509 certificate and Visa-specificID/password. Phase 2, onboarding of a service implementation, requiresthat the service provider: implement a specific service; a XML/JSON filecontaining the UI configuration for the service. This UI configurationis based on the configuration template provided by Payment for thisservice. See Section [00234] for the template and related configurationdata. SP_SERVICE_URL, version of the service implementation. In someembodiments, the SP_SERVICE_URL is the common URL path for this serviceimplementation. It is generally of this format:

https://{service_provider_hostname}/v{version}/service/{serviceID}

Payment assigns a serviceID for each service onboarded by the serviceprovider. Payment also specifies the VME_HOSTNAME, which indicates thehostname of the Wallet service. FIG. 32P describes an example sequencediagram.

Data Model: The UI configuration, service version number, Terms andConditions, X509 certificate, and service invoker ID/password areprovided manually by the service provider; they are uploaded into theV.me. Security: The PaymentID and password provided to the serviceprovider are stored in an X500 Directory; the password is stored as asalted hash. The service provider ID/password, given to Payment by theservice provider, are stored in a database; the password is encrypted.The service provider may in turn store the PaymentID/password andservice provider ID/password securely. Process: All onboardinginformation communicated between Payment and the service provider isdone manually, using an offline process. Information received by Paymentmay be validated and uploaded to the Wallet system. The service providercan initially test in the Wallet sandbox, and once ready, migrate to theproduction system.

Subscription:

The objective of subscription is to (1) link the user between Wallet andthe service provider and to (2) convey the acceptance of the requiredT&C from Wallet to the service provider. When the user first chooses touse a service, Wallet may send a subscribe message to the serviceprovider, providing sufficient information to enable the serviceprovider to link the Wallet account with the service provider's useraccount.

Before the user creates or updates her user settings, Wallet requeststhe service provider for the current user settings. If the user haseither not enrolled or not accepted the latest version of the Terms andConditions for the service implementation then a return code to thateffect may be provided by the service provider. Based on this statuscode, Wallet may direct the user to an intermediate screen whichdisplays the Terms and Conditions hosted by the service provider. Onacceptance of the Terms and Conditions, a subscription notice is sentfrom Wallet to the service provider. Once the subscription is acceptedby the SP, any subsequent calls to retrieve user settings should besuccessful.

Subscription occurs via the following REST call from Wallet to theservice provider:

POST {SP_SERVICE_URL}/subscription

Unsubscribing occurs via the following REST call from Wallet to theservice provider:

DELETE {SP_SERVICE_URL}/subscription

The body contains the following information: vme_user: user-specificWallet GUID for external usage (EXTERNAL_GUID) service_provider_cid:customer ID (optional, if available to V.me); lastFour: last 4 digits ofPAN; name: full name as specified for PAN; termsURL: url of the T&Caccepted (optional, only if user is accepting T&Cs); the service shoulduse the timestamp in the header as the time of acceptance

This information enables the service provider to link the EXTERNAL_GUIDto the customer record on its side, either via the CID or the last 4digits of the PAN and the name. Note that the EXTERNAL_GUID sent byWallet may always be the same for a Wallet user, irrespective of theservice to which the user is subscribing.

Here is an example request body:

{      vme_user: “342342”,      lastFour: “1234”,      name: “JohnSmith” }

If the CID is not available, the service provider should use the userid,lastFour and name fields to attempt to identity the user account on itsside. The service provider may return the following HTTP status codes:200 OK—if success linking the accounts 400 Bad Request—if the URL orbody could not be understood by the service provider, if the client sentincorrect data, or if the data failed validation 401 Unauthorized—ifincorrect credentials sent 404 Not Found—if URL incorrect, includingserviced; 406 Not Acceptable—if the only acceptable content types forthe client is not supported by the system 412 Precondition Failed—if theservice provider could not resolve the user account based on the CID,userid, lastFour and/or name; or, the user has not accepted the latestTerms and Conditions. In this case, the body may contain the codeindicating the exact failure. For T&C acceptance precondition failurecode, the body of the response may also contain the URL for the Termsand Conditions to be accepted as a precondition. After displaying thisT&C and requiring the user to accept the T&C, Wallet may send a newsubscription message with the termsURL field to indicate that the userhas accepted this specific T&C. code: precondition failure codetermsURL:url of the T&C required to be accepted by the user; 415Unsupported Media Type—if a content type specified is not supported; 500Internal Server Error—a server problem is preventing it from fulfillingthe request

In case of success, the service provider may return HTTP 200 and theCID. The CID is the foreign key that Wallet may use to reference theuser when it communicates with the service provider. Therefore, the CIDcan be any unique key within this service provider's namespace. If itdoes not have a local key for the user, the service provider can simplyreturn the EXTERNAL_GUID as the CID value in the response and Wallet mayuse this as the CID value in future communications.

Here is an example response

HTTP/1.1 200 OK Content-Type: text/json; charset=utf-8 {     service_provider_cid: “12345abc” }

In case of 500 Internal Server Error, Wallet may attempt to retry 3times, before giving up. Data Model: Terms and Condition/Privacy Policycontent as well as their acceptance by users may be managed by theservice provider. Security: The subscription REST request is sent fromWallet to the service provider. It is over a SSL channel, withtwo-factor authentication.

User Settings:

This is used by Wallet to retrieve and update serviceimplementation-specific and user-specific settings data from the serviceprovider:

GET {SP_SERVICE_URL}/settings/user/{CID}PUT {SP_SERVICE_URL}/settings/user/{CID}

The body contains a set of key-value pairs, where the keys correspond tothe UI Configuration data specified during the service implementationonboarding process. See Section [00234] for the body schema. The serviceprovider may return the following HTTP status codes: 200 OK—success 400Bad Request—if the URL or body could not be understood by the serviceprovider, if the client sent incorrect data, or if the data failedvalidation 401 Unauthorized—if incorrect credentials sent 404 NotFound—if URL incorrect, including serviceID or CID 406 Not Acceptable—ifthe only acceptable content types for the client is not supported by thesystem 412 Precondition Failed—if the user is not subscribed or has notaccepted the latest Terms and Conditions. The body of the response maycontain the URL for the Terms and Conditions to be accepted as aprecondition. Wallet may send a subscription message (see Section[00202]) to remove the precondition before attempting a retry. code:recondition failure code termsURL:url of the T&C required to be acceptedby the user 415 Unsupported Media Type—if a content type specified isnot supported 500 Internal Server Error—a server problem is preventingit from fulfilling the request.

In case of success, the service provider returns HTTP 200 OK. For boththe GET and the PUT, the response body contains the key-value settingsdata. In case of error, the Wallet system does NOT retry; instead, ittells the user that the service provider is unavailable.Data Model Thesettings data is stored at the service provider and is not stored withinV.me. This enables the service provider to provide the same servicethemselves and the consumer may see the same settings from all places(i.e., if a setting is updated on V.me, then that setting update shouldbe reflected in that same service invoked from the service providerdirectly). Security: The subscription REST request is sent from Walletto the service provider. It is over a SSL channel, with two-factorauthentication. Performance: These calls occur in the user request path;therefore, their performance directly affects the user experience.

Activity Notifacations:

Activity notifications are used to convey service activity informationto V.me. This is a REST request sent from the service provider to V.me:

POST {VME_HOSTNAME}/vas/v1/service/{serviceID}

The body contains one or more “settings” data. See Section [00234] forthe body schema, which contains a series of settings. Settings may havethe following attributes:

ACTION can be

Action Description POST For new activity item PUT For update on anexisting activity item DELETE Withdrawal of an activity item

service_provider_cid: Service provider's customer ID, negotiated duringsubscription activityID: Unique ID within the service provider'snamespace for this activity item; each new activity item may have anunique activityID. Here is an example body:

  <settings action=“POST” activityID=“3552” service_provider_cid=“231” > <setting key=“issuerName” value=“Bank of ABC”/> <settingkey=“issuerLogo” value=“http://www.boa.com// BANK_america.jpg”/><setting key=“offLogo” value=“http://www.safeway.com/offers/ logo.gif”/><setting key=“off” value=“Earn 15% Cash Back on all Dairy products”/><setting key=“exp” value=“2012-07-16T19:20:30” type=DATE/> <settingkey=“acc” value=“unaccepted”/> <settings>

Wallet may return the following HTTP status codes: 200 OK; 400 BadRequest—if the URL or body could not be understood by V.me, if theclient sent incorrect data, or if the data failed validation; 401Unauthorized—if incorrect credentials sent; 404 Not Found—if URLincorrect, including serviced; 406 Not Acceptable—if the only acceptablecontent types for the client is not supported by the system; 415Unsupported Media Type—if a content type specified is not supported; 500Internal Server Error—a server problem is preventing it from fulfillingthe request; In case of 500 Internal Server Error, it is up to theservice provider whether it wants to retry a few times before giving up.

Alternative Pull Model:

In case the service provider cannot send activity notifications to V.me,Wallet can be configured to periodically poll the service provider tofetch this data. In this case, Wallet may invoke the following RESTcall:

  GET {SP_SERVICE_URL}/activity/service/{serviceID}

The service provider may return the following HTTP status codes: 200 OK400 Bad Request—if the URL or body could not be understood by V.me, ifthe client sent incorrect data, or if the data failed validation 401Unauthorized—if incorrect credentials sent 404 Not Found—if URLincorrect, including serviced 406 Not Acceptable—if the only acceptablecontent types for the client is not supported by the system 415Unsupported Media Type—if a content type specified is not supported 500Internal Server Error—a server problem is preventing it from fulfillingthe request. In case of success, the service provider may return anarray of “activity” elements, each containing the following commonattributes and child settings that are identical to the push model. Incase of 500 Internal Server Error, Wallet may not retry until the nextperiod. Data Model: All activity notification information sent to Walletis stored in the Wallet database. This data is used for pushnotifications to mobile devices and for activity feed information.

Protocol:

All communication between Wallet and the service provider is over RESTwith JSON or XML content. SSL is used for channel security. In addition,two factor authentication is utilized for every request, with one factorbeing the SSL certificate and the other an ID/password. This informationis exchanged during service provider onboarding. The request may havethe following headers: For HTTP Basic authentication, the Authorizationfield is used to convey ID/password credentials. For the authorizationstring, the ID is followed by a colon and the password for this pair.The resulting string is encoded with the Base64 algorithm. The servermay respond with a 401 Unauthorized if the authorization header is notspecified.

  Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ==

Content Type/Length—Several content types are supported for the requestmessage body—XML, JSON, NVP. The server may respond with a 415Unsupported Media Type if the content type is unacceptable. The contentlength is optional.

  Content-Type: application/json Content-Length: 311

Accept Type—specifies the preferred response format. XML and JSON areacceptable. It may respond with a 406 Not Acceptable if the accept typeonly specifies other formats.

  Accept: text/xml; application/json; application/soap+xml

Keep Alive: To minimize connection costs between the service providerand V.me, it is recommended that the service provider use HTTPkeep-alive connections when connecting to Wallet and that it supportHTTP keep-alive connections when Wallet connects to it.

Internationalization: Everything may be encoded in UTF-8. Text may bedisplayed without automatic conversion.

UI Template Framework:

To display user settings and activity wall data, a templating approachmay be used. The templating framework contains three parts:Template—consisting of HTML, CSS, JS; SP-specificconfiguration—consisting of XML/JSON; User-specific data—consisting ofXML/JSON.

Template: A template is constructed using HTML, CSS, JS and containsvariables that may be filled in either by the SP-specific configurationor the user-specific data. The fonts and placement of the data iscontrolled by the template. Here is an example template: FIG. 32T.

In this template, some text is built into the template and is shownabove. For the remaining text strings and input boxes, variables arespecified, which can be filled. Each variable, denoted as a key, may beunique within the template. Validation rules for each input box may alsobe specified here.

Template Configuration Schema

The schema to define the template is specified below:

settings Outermost element. Attributes include spi_id to specify it isservice- provider specific, service_provider_cid to specify it isuser-specific, activity_ID to specify it is an activity item specific.The attribute ‘action’ indicates whether it is a POST (new) (default),PUT (update), or DELETE (removal). locale Child of ‘settings’, indicatesthe applicable locale; contains one or more ‘setting’ elements toindicate these settings are locale-specific country 3-digit country codelang 2-digit language code setting Element may either appear as child of‘settings’ or ‘locale’; if child of ‘settings’, then it is a globalsetting whereas if child of ‘locale’, then it is a locale-specificsetting ID If this setting is referred by another setting (optional);the ID may be unique within the service provider's namespace key key(this corresponds to the variables defined in the template) valueLiteral value for the key (optional) refID Reference value for the key(optional) type Type of value; for a reference value, the type isinferred from the type specified in the reference. For literal values,if not specified, then type STRING is assumed.

The configuration data may be specified at the V.me, service provider,user level, or activity item level, based on settings attributes.

Service Provider-Specific Configuration:

Each service provider that chooses to use the template above may specifya configuration file that can fill in service provider-specific strings.In the above template example, all the variables on the left are staticstrings that should be specified in this configuration file (thevariables on the right are user-specific settings data). This is apartial example configuration, in XML, for three of the variables in thetemplate:

  <?xml version=“1.0” encoding=“UTF-8”?> <settings spi_id=“abc”> <locale country=“840” lang=“en-us”>   <setting key=“logoURL”value=“http://www.abcbank.com/images/logo.gif”/>   <setting key=“TOhead”value=“Transactions over US $”/>   <setting key=“TOdesc” value=“You'llreceive an alert for every transaction over the amount you set.”/>   . ..  </locale>  <locale country=“124” lang=“en-ca”>   <settingkey=“logoURL” value=“http://www.abcbank.com/images/logo.gif”/>  <setting key=“TOhead” value=“Transactions over CAN $”/>   <settingkey=“TOdesc” value=“You'll receive an alert for every transaction overthe amount you set.”/>   . . .  </locale>  <locale country=“124”lang=“fr-ca”>   <setting key=“logoURL”value=“http://www.abcbank.com/images/logo.gif”/>   <setting key=“TOhead”value=“Transactions sur CAN $”/>   <setting key=“TOdesc” value=“Vousrecevrez une alerte pour chaque transaction sur le montant que vousdefinissez.”/>   . . .  </locale> </settings>

The spi_id attribute indicates it is a service providerimplementation-specific configuration. In this example, for English,there is a trivial change between the two countries, in that the “US $”is present for the US and “CAN $” is present for Canada. Additionally,for Canadian French users, the text strings have been translated toFrench.

User-specific Data: This is a partial example configuration, in XML, forthree of the variables in the template:

  <?xml version=“1.0” encoding=“UTF-8”?> <settingsservice_provider_cid=“235”>   <!-- EMAIL and SMS are predefinedconstants -->   <setting ID=“1” type=EMAIL value=“john.smith@yahoo.com”/>   <setting ID=“2” type=SMS value=“6505551212” />  <paymentInstrumentlastFourPAN=“1234”>    <!- this refers to the email address above -->  <setting key=“TransactionContacts” refID=“1” />   <settingkey=“TransactionContacts ” refID=“2” />   <setting key=“DTContacts”refID=“1” />   <setting key=“DTContacts ” refID=“2” />   <settingkey=“TOamt” value=“50” />   <!-this variable is not used in display, butmay be used for currency conversion -->   <setting key=“TOamtCurrency”value=“US” />   </paymentInstrument> </settings>

The service_provider_cid indicates it is user-specific. The refIDattribute for the setting elements above associate the alert with thecontact. For example the following:

  <setting key=“ TransactionContacts” refID=“1” /> <setting key=“TransactionContacts” refID=“2” />

specifies that for the alert with the key TransactionContacts (relatesto Transaction alert in the template provided above) reference ID 1 and2 (relates to email with address john.smith@yahoo.com and sms for phonenumber 6505551212) have been selected. The variableSetting specifies anyvariables necessary for an alert. For example in the above XML, alertwith key TOamt (associated with Threshold Over Amount in the templateabove) represents the minimum value for the alert trigger.

FIG. 32U shows an example of the display output by combining thetemplate, the service-provider specific configuration and theuser-specific settings data.

Activity Item-Specific Data:

An offer or an alert is an example of an activity item. It follows thesame template model but the configuration data for this is denoted witha ‘activity_id’ attribute. Since all activity is also user-specific, theservice_provider_cid attribute may also be present. If the actionattribute is missing, POST is assumed as the default.

For example, FIG. 32U is an offer activity template; only a few fieldsare specified here for simplicity. Since the service provider logo isidentical for all offers from the same service provider, thisinformation may be specified once and uploaded into Wallet by theservice provider during onboarding; hence only a “spi_id” is specified:

  <?xml version=“1.0” encoding=“UTF-8”?> <settings spi_id=“235”> <setting key=“serviceProviderLogo”value=“http://www.abcbank.com/images/logo.gif”/> </settings>

In addition, the offer components that are per-user and per activityitem may be specified separately, specifically with “activity_id” and“service_provider_cid” attributes. Therefore, here is a partial exampleconfiguration, in XML, for these variables in the template above:

  <?xml version=“1.0” encoding=“UTF-8”?> <settings activity_id=“34525ss”service_provider_cid=“235”> <setting key=“offerLogo”value=“http://merchant.com/images/logo. gif”/> <setting key=“expires”value=“2012-07-16T19:20:30” type=DATE/> </settings>

W-CONNECTOR Controller

FIG. 25 shows a block diagram illustrating embodiments of a W-CONNECTORcontroller. In this embodiment, the W-CONNECTOR controller 3301 mayserve to aggregate, process, store, search, serve, identify, instruct,generate, match, and/or facilitate interactions with a computer throughvarious bi-directional linking technologies, and/or other related data.

Typically, users, which may be people and/or other systems, may engageinformation technology systems (e.g., computers) to facilitateinformation processing. In turn, computers employ processors to processinformation; such processors 3303 may be referred to as centralprocessing units (CPU). One form of processor is referred to as amicroprocessor. CPUs use communicative circuits to pass binary encodedsignals acting as instructions to enable various operations. Theseinstructions may be operational and/or data instructions containingand/or referencing other instructions and data in various processoraccessible and operable areas of memory 3329 (e.g., registers, cachememory, random access memory, etc.). Such communicative instructions maybe stored and/or transmitted in batches (e.g., batches of instructions)as programs and/or data components to facilitate desired operations.These stored instruction codes, e.g., programs, may engage the CPUcircuit components and other motherboard and/or system components toperform desired operations. One type of program is a computer operatingsystem, which, may be executed by CPU on a computer; the operatingsystem enables and facilitates users to access and operate computerinformation technology and resources. Some resources that may beemployed in information technology systems include: input and outputmechanisms through which data may pass into and out of a computer;memory storage into which data may be saved; and processors by whichinformation may be processed. These information technology systems maybe used to collect data for later retrieval, analysis, and manipulation,which may be facilitated through a database program. These informationtechnology systems provide interfaces that allow users to access andoperate various system components.

In one embodiment, the W-CONNECTOR controller 3301 may be connected toand/or communicate with entities such as, but not limited to: one ormore users from user input devices 3311; peripheral devices 3312; anoptional cryptographic processor device 3328; and/or a communicationsnetwork 3313.

Networks are commonly thought to comprise the interconnection andinteroperation of clients, servers, and intermediary nodes in a graphtopology. It should be noted that the term “server” as used throughoutthis application refers generally to a computer, other device, program,or combination thereof that processes and responds to the requests ofremote users across a communications network. Servers serve theirinformation to requesting “clients.” The term “client” as used hereinrefers generally to a computer, program, other device, user and/orcombination thereof that is capable of processing and making requestsand obtaining and processing any responses from servers across acommunications network. A computer, other device, program, orcombination thereof that facilitates, processes information andrequests, and/or furthers the passage of information from a source userto a destination user is commonly referred to as a “node.” Networks aregenerally thought to facilitate the transfer of information from sourcepoints to destinations. A node specifically tasked with furthering thepassage of information from a source to a destination is commonly calleda “router.” There are many forms of networks such as Local Area Networks(LANs), Pico networks, Wide Area Networks (WANs), Wireless Networks(WLANs), etc. For example, the Internet is generally accepted as beingan interconnection of a multitude of networks whereby remote clients andservers may access and interoperate with one another.

The W-CONNECTOR controller 3301 may be based on computer systems thatmay comprise, but are not limited to, components such as: a computersystemization 3302 connected to memory 3329.

Computer Systemization

A computer systemization 3302 may comprise a clock 3330, centralprocessing unit (“CPU(s)” and/or “processor(s)” (these terms are usedinterchangeable throughout the disclosure unless noted to the contrary))3303, a memory 3329 (e.g., a read only memory (ROM) 3306, a randomaccess memory (RAM) 3305, etc.), and/or an interface bus 3307, and mostfrequently, although not necessarily, are all interconnected and/orcommunicating through a system bus 3304 on one or more (mother)board(s)3302 having conductive and/or otherwise transportive circuit pathwaysthrough which instructions (e.g., binary encoded signals) may travel toeffectuate communications, operations, storage, etc. The computersystemization may be connected to a power source 3386; e.g., optionallythe power source may be internal. Optionally, a cryptographic processor3326 and/or transceivers (e.g., ICs) 3374 may be connected to the systembus. In another embodiment, the cryptographic processor and/ortransceivers may be connected as either internal and/or externalperipheral devices 3312 via the interface bus I/O. In turn, thetransceivers may be connected to antenna(s) 3375, thereby effectuatingwireless transmission and reception of various communication and/orsensor protocols; for example the antenna(s) may connect to: a TexasInstruments WiLink WL1283 transceiver chip (e.g., providing 802.11n,Bluetooth 3.0, FM, global positioning system (GPS) (thereby allowingW-CONNECTOR controller to determine its location)); BroadcomBCM4329FKUBG transceiver chip (e.g., providing 802.11n, Bluetooth2.1+EDR, FM, etc.); a Broadcom BCM47501UB8 receiver chip (e.g., GPS); anInfineon Technologies X-Gold 618-PMB9800 (e.g., providing 2G/3GHSDPA/HSUPA communications); and/or the like. The system clock typicallyhas a crystal oscillator and generates a base signal through thecomputer systemization's circuit pathways. The clock is typicallycoupled to the system bus and various clock multipliers that mayincrease or decrease the base operating frequency for other componentsinterconnected in the computer systemization. The clock and variouscomponents in a computer systemization drive signals embodyinginformation throughout the system. Such transmission and reception ofinstructions embodying information throughout a computer systemizationmay be commonly referred to as communications. These communicativeinstructions may further be transmitted, received, and the cause ofreturn and/or reply communications beyond the instant computersystemization to: communications networks, input devices, other computersystemizations, peripheral devices, and/or the like. It should beunderstood that in alternative embodiments, any of the above componentsmay be connected directly to one another, connected to the CPU, and/ororganized in numerous variations employed as exemplified by variouscomputer systems.

The CPU comprises at least one high-speed data processor adequate toexecute program components for executing user and/or system-generatedrequests. Often, the processors themselves may incorporate variousspecialized processing units, such as, but not limited to: integratedsystem (bus) controllers, memory management control units, floatingpoint units, and even specialized processing sub-units like graphicsprocessing units, digital signal processing units, and/or the like.Additionally, processors may include internal fast access addressablememory, and be capable of mapping and addressing memory 3329 beyond theprocessor itself; internal memory may include, but is not limited to:fast registers, various levels of cache memory (e.g., level 1, 2, 3,etc.), RAM, etc. The processor may access this memory through the use ofa memory address space that is accessible via instruction address, whichthe processor can construct and decode allowing it to access a circuitpath to a specific memory address space having a memory state. The CPUmay be a microprocessor such as: AMD's Athlon, Duron and/or Opteron;ARM's application, embedded and secure processors; IBM and/or Motorola'sDragonBall and PowerPC; IBM's and Sony's Cell processor; Intel'sCeleron, Core (2) Duo, Itanium, Pentium, Xeon, and/or XScale; and/or thelike processor(s). The CPU interacts with memory through instructionpassing through conductive and/or transportive conduits (e.g., (printed)electronic and/or optic circuits) to execute stored instructions (i.e.,program code) according to conventional data processing techniques. Suchinstruction passing facilitates communication within the W-CONNECTORcontroller and beyond through various interfaces. Should processingrequirements dictate a greater amount speed and/or capacity, distributedprocessors (e.g., Distributed W-CONNECTOR), mainframe, multi-core,parallel, and/or super-computer architectures may similarly be employed.Alternatively, should deployment requirements dictate greaterportability, smaller Personal Digital Assistants (PDAs) may be employed.

Depending on the particular implementation, features of the W-CONNECTORmay be achieved by implementing a microcontroller such as CAST'sR8051XC2 microcontroller; Intel's MCS 51 (i.e., 8051 microcontroller);and/or the like. Also, to implement certain features of the W-CONNECTOR,some feature implementations may rely on embedded components, such as:Application-Specific Integrated Circuit (“ASIC”), Digital SignalProcessing (“DSP”), Field Programmable Gate Array (“FPGA”), and/or thelike embedded technology. For example, any of the W-CONNECTOR componentcollection (distributed or otherwise) and/or features may be implementedvia the microprocessor and/or via embedded components; e.g., via ASIC,coprocessor, DSP, FPGA, and/or the like. Alternately, someimplementations of the W-CONNECTOR may be implemented with embeddedcomponents that are configured and used to achieve a variety of featuresor signal processing.

Depending on the particular implementation, the embedded components mayinclude software solutions, hardware solutions, and/or some combinationof both hardware/software solutions. For example, W-CONNECTOR featuresdiscussed herein may be achieved through implementing FPGAs, which are asemiconductor devices containing programmable logic components called“logic blocks”, and programmable interconnects, such as the highperformance FPGA Virtex series and/or the low cost Spartan seriesmanufactured by Xilinx. Logic blocks and interconnects can be programmedby the customer or designer, after the FPGA is manufactured, toimplement any of the W-CONNECTOR features. A hierarchy of programmableinterconnects allow logic blocks to be interconnected as needed by theW-CONNECTOR system designer/administrator, somewhat like a one-chipprogrammable breadboard. An FPGA's logic blocks can be programmed toperform the operation of basic logic gates such as AND, and XOR, or morecomplex combinational operators such as decoders or mathematicaloperations. In most FPGAs, the logic blocks also include memoryelements, which may be circuit flip-flops or more complete blocks ofmemory. In some circumstances, the W-CONNECTOR may be developed onregular FPGAs and then migrated into a fixed version that more resemblesASIC implementations. Alternate or coordinating implementations maymigrate W-CONNECTOR controller features to a final ASIC instead of or inaddition to FPGAs. Depending on the implementation all of theaforementioned embedded components and microprocessors may be consideredthe “CPU” and/or “processor” for the W-CONNECTOR.

Power Source

The power source 3386 may be of any standard form for powering smallelectronic circuit board devices such as the following power cells:alkaline, lithium hydride, lithium ion, lithium polymer, nickel cadmium,solar cells, and/or the like. Other types of AC or DC power sources maybe used as well. In the case of solar cells, in one embodiment, the caseprovides an aperture through which the solar cell may capture photonicenergy. The power cell 3386 is connected to at least one of theinterconnected subsequent components of the W-CONNECTOR therebyproviding an electric current to all subsequent components. In oneexample, the power source 3386 is connected to the system bus component3304. In an alternative embodiment, an outside power source 3386 isprovided through a connection across the I/O 3308 interface. Forexample, a USB and/or IEEE 1394 connection carries both data and poweracross the connection and is therefore a suitable source of power.

Interface Adapters

Interface bus(ses) 3307 may accept, connect, and/or communicate to anumber of interface adapters, conventionally although not necessarily inthe form of adapter cards, such as but not limited to: input outputinterfaces (I/O) 3308, storage interfaces 3309, network interfaces 3310,and/or the like. Optionally, cryptographic processor interfaces 3327similarly may be connected to the interface bus. The interface busprovides for the communications of interface adapters with one anotheras well as with other components of the computer systemization.Interface adapters are adapted for a compatible interface bus. Interfaceadapters conventionally connect to the interface bus via a slotarchitecture. Conventional slot architectures may be employed, such as,but not limited to: Accelerated Graphics Port (AGP), Card Bus,(Extended) Industry Standard Architecture ((E)ISA), Micro ChannelArchitecture (MCA), NuBus, Peripheral Component Interconnect (Extended)(PCI(X)), PCI Express, Personal Computer Memory Card InternationalAssociation (PCMCIA), and/or the like.

Storage interfaces 3309 may accept, communicate, and/or connect to anumber of storage devices such as, but not limited to: storage devices3314, removable disc devices, and/or the like. Storage interfaces mayemploy connection protocols such as, but not limited to: (Ultra)(Serial) Advanced Technology Attachment (Packet Interface) ((Ultra)(Serial) ATA(PI)), (Enhanced) Integrated Drive Electronics ((E)IDE),Institute of Electrical and Electronics Engineers (IEEE) 1394, fiberchannel, Small Computer Systems Interface (SCSI), Universal Serial Bus(USB), and/or the like.

Network interfaces 3310 may accept, communicate, and/or connect to acommunications network 3313. Through a communications network 3313, theW-CONNECTOR controller is accessible through remote clients 3333 b(e.g., computers with web browsers) by users 3333 a. Network interfacesmay employ connection protocols such as, but not limited to: directconnect, Ethernet (thick, thin, twisted pair 10/100/1000 Base T, and/orthe like), Token Ring, wireless connection such as IEEE 802.11a-x,and/or the like. Should processing requirements dictate a greater amountspeed and/or capacity, distributed network controllers (e.g.,Distributed W-CONNECTOR), architectures may similarly be employed topool, load balance, and/or otherwise increase the communicativebandwidth required by the W-CONNECTOR controller. A communicationsnetwork may be any one and/or the combination of the following: a directinterconnection; the Internet; a Local Area Network (LAN); aMetropolitan Area Network (MAN); an Operating Missions as Nodes on theInternet (OMNI); a secured custom connection; a Wide Area Network (WAN);a wireless network (e.g., employing protocols such as, but not limitedto a Wireless Application Protocol (WAP), I-mode, and/or the like);and/or the like. A network interface may be regarded as a specializedform of an input output interface. Further, multiple network interfaces3310 may be used to engage with various communications network types3313. For example, multiple network interfaces may be employed to allowfor the communication over broadcast, multicast, and/or unicastnetworks.

Input Output interfaces (I/O) 3308 may accept, communicate, and/orconnect to user input devices 3311, peripheral devices 3312,cryptographic processor devices 3328, and/or the like. I/O may employconnection protocols such as, but not limited to: audio: analog,digital, monaural, RCA, stereo, and/or the like; data: Apple Desktop Bus(ADB), IEEE 1394a-b, serial, universal serial bus (USB); infrared;joystick; keyboard; midi; optical; PC AT; PS/2; parallel; radio; videointerface: Apple Desktop Connector (ADC), BNC, coaxial, component,composite, digital, Digital Visual Interface (DVI), high-definitionmultimedia interface (HDMI), RCA, RF antennae, S-Video, VGA, and/or thelike; wireless transceivers: 802.11a/b/g/n/x; Bluetooth; cellular (e.g.,code division multiple access (CDMA), high speed packet access(HSPA(+)), high-speed downlink packet access (HSDPA), global system formobile communications (GSM), long term evolution (LTE), WiMax, etc.);and/or the like. One typical output device may include a video display,which typically comprises a Cathode Ray Tube (CRT) or Liquid CrystalDisplay (LCD) based monitor with an interface (e.g., DVI circuitry andcable) that accepts signals from a video interface, may be used. Thevideo interface composites information generated by a computersystemization and generates video signals based on the compositedinformation in a video memory frame. Another output device is atelevision set, which accepts signals from a video interface. Typically,the video interface provides the composited video information through avideo connection interface that accepts a video display interface (e.g.,an RCA composite video connector accepting an RCA composite video cable;a DVI connector accepting a DVI display cable, etc.).

User input devices 3311 often are a type of peripheral device 512 (seebelow) and may include: card readers, dongles, finger print readers,gloves, graphics tablets, joysticks, keyboards, microphones, mouse(mice), remote controls, retina readers, touch screens (e.g.,capacitive, resistive, etc.), trackballs, trackpads, sensors (e.g.,accelerometers, ambient light, GPS, gyroscopes, proximity, etc.),styluses, and/or the like.

Peripheral devices 3312 may be connected and/or communicate to I/Oand/or other facilities of the like such as network interfaces, storageinterfaces, directly to the interface bus, system bus, the CPU, and/orthe like. Peripheral devices may be external, internal and/or part ofthe W-CONNECTOR controller. Peripheral devices may include: antenna,audio devices (e.g., line-in, line-out, microphone input, speakers,etc.), cameras (e.g., still, video, webcam, etc.), dongles (e.g., forcopy protection, ensuring secure transactions with a digital signature,and/or the like), external processors (for added capabilities; e.g.,crypto devices 528), force-feedback devices (e.g., vibrating motors),network interfaces, printers, scanners, storage devices, transceivers(e.g., cellular, GPS, etc.), video devices (e.g., goggles, monitors,etc.), video sources, visors, and/or the like. Peripheral devices ofteninclude types of input devices (e.g., cameras).

It should be noted that although user input devices and peripheraldevices may be employed, the W-CONNECTOR controller may be embodied asan embedded, dedicated, and/or monitor-less (i.e., headless) device,wherein access would be provided over a network interface connection.

Cryptographic units such as, but not limited to, microcontrollers,processors 3326, interfaces 3327, and/or devices 3328 may be attached,and/or communicate with the W-CONNECTOR controller. A MC68HC16microcontroller, manufactured by Motorola Inc., may be used for and/orwithin cryptographic units. The MC68HC16 microcontroller utilizes a16-bit multiply-and-accumulate instruction in the 16 MHz configurationand requires less than one second to perform a 512-bit RSA private keyoperation. Cryptographic units support the authentication ofcommunications from interacting agents, as well as allowing foranonymous transactions. Cryptographic units may also be configured aspart of the CPU. Equivalent microcontrollers and/or processors may alsobe used. Other commercially available specialized cryptographicprocessors include: Broadcom's CryptoNetX and other Security Processors;nCipher's nShield, SafeNet's Luna PCI (e.g., 7100) series; SemaphoreCommunications' 40 MHz Roadrunner 184; Sun's Cryptographic Accelerators(e.g., Accelerator 6000 PCIe Board, Accelerator 500 Daughtercard); ViaNano Processor (e.g., L2100, L2200, U2400) line, which is capable ofperforming 500+ MB/s of cryptographic instructions; VLSI

Technology's 33 MHz 6868; and/or the like.

Memory

Generally, any mechanization and/or embodiment allowing a processor toaffect the storage and/or retrieval of information is regarded as memory3329. However, memory is a fungible technology and resource, thus, anynumber of memory embodiments may be employed in lieu of or in concertwith one another. It is to be understood that the W-CONNECTOR controllerand/or a computer systemization may employ various forms of memory 3329.For example, a computer systemization may be configured wherein theoperation of on-chip CPU memory (e.g., registers), RAM, ROM, and anyother storage devices are provided by a paper punch tape or paper punchcard mechanism; however, such an embodiment would result in an extremelyslow rate of operation. In a typical configuration, memory 3329 mayinclude ROM 3306, RAM 3305, and a storage device 3314. A storage device3314 may be any conventional computer system storage. Storage devicesmay include a drum; a (fixed and/or removable) magnetic disk drive; amagneto-optical drive; an optical drive (i.e., Blu-ray, CDROM/RAM/Recordable (R)/ReWritable (RW), DVD R/RW, HD DVD R/RW etc.); anarray of devices (e.g., Redundant Array of Independent Disks (RAID));solid state memory devices (USB memory, solid state drives (SSD), etc.);other processor-readable storage mediums; and/or other devices of thelike. Thus, a computer systemization generally requires and makes use ofmemory.

Component Collection

The memory 3329 may contain a collection of program and/or databasecomponents and/or data such as, but not limited to: operating systemcomponent(s) 3315 (operating system); information server component(s)3316 (information server); user interface component(s) 3317 (userinterface); Web browser component(s) 3318 (Web browser); database(s)3319; mail server component(s) 3321; mail client component(s) 3322;cryptographic server component(s) 3320 (cryptographic server); theW-CONNECTOR component(s) 3335; the account creation and management (ACM)component 3341; the Prefill component 3342; Wallet Enrollment Component3343; multi-directional wallet connector (MDWC) component 3344; MobileWallet Overlay (“MWO”) 3345; Wallet Alert Interactions (“WAI)) component3346; Wallet View Payment (“WVP”) component 3347; Wallet UserSubscription (“WUS”) component 3348; Wallet Alert Settings (“WAS”)component 3349; Wallet Subscription Alert (“WSA”) component 3350; WalletSaves Alert Setting (“WSAS”) component 3351; Wallet Get Alert (“WGA”)component 3352; Wallet Client Saves Alert (“WCSA”) component 3353; VASLife Cycle (“VASLC”) component 3354; VAS Onboarding (“VASO”) component3355; VAS Subscription (“VASS”) component 3356; VAS User Settings(“VASUS”) component 3357; VAS Activity Notifications (“VASAN”) component3358; and/or the like (i.e., collectively a component collection). Thesecomponents may be stored and accessed from the storage devices and/orfrom storage devices accessible through an interface bus. Althoughnon-conventional program components such as those in the componentcollection, typically, are stored in a local storage device 3314, theymay also be loaded and/or stored in memory such as: peripheral devices,RAM, remote storage facilities through a communications network, ROM,various forms of memory, and/or the like.

Operating System

The operating system component 3315 is an executable program componentfacilitating the operation of the W-CONNECTOR controller. Typically, theoperating system facilitates access of I/O, network interfaces,peripheral devices, storage devices, and/or the like. The operatingsystem may be a highly fault tolerant, scalable, and secure system suchas: Apple Macintosh OS X (Server); AT&T Nan 9; Be OS; Unix and Unix-likesystem distributions (such as AT&T's UNIX; Berkley Software Distribution(BSD) variations such as FreeBSD, NetBSD, OpenBSD, and/or the like;Linux distributions such as Red Hat, Ubuntu, and/or the like); and/orthe like operating systems. However, more limited and/or less secureoperating systems also may be employed such as Apple Macintosh OS, IBMOS/2, Microsoft DOS, Microsoft Windows2000/2003/3.1/95/98/CE/Millenium/NT/Vista/XP (Server), Palm OS, and/orthe like. An operating system may communicate to and/or with othercomponents in a component collection, including itself, and/or the like.Most frequently, the operating system communicates with other programcomponents, user interfaces, and/or the like. For example, the operatingsystem may contain, communicate, generate, obtain, and/or provideprogram component, system, user, and/or data communications, requests,and/or responses. The operating system, once executed by the CPU, mayenable the interaction with communications networks, data, I/O,peripheral devices, program components, memory, user input devices,and/or the like. The operating system may provide communicationsprotocols that allow the W-CONNECTOR controller to communicate withother entities through a communications network 3313. Variouscommunication protocols may be used by the W-CONNECTOR controller as asubcarrier transport mechanism for interaction, such as, but not limitedto: multicast, TCP/IP, UDP, unicast, and/or the like.

Information Server

An information server component 3316 is a stored program component thatis executed by a CPU. The information server may be a conventionalInternet information server such as, but not limited to Apache SoftwareFoundation's Apache, Microsoft's Internet Information Server, and/or thelike. The information server may allow for the execution of programcomponents through facilities such as Active Server Page (ASP), ActiveX,(ANSI) (Objective-) C (++), C# and/or .NET, Common Gateway Interface(CGI) scripts, dynamic (D) hypertext markup language (HTML), FLASH,Java, JavaScript, Practical Extraction Report Language (PERL), HypertextPre-Processor (PHP), pipes, Python, wireless application protocol (WAP),WebObjects, and/or the like. The information server may support securecommunications protocols such as, but not limited to, File TransferProtocol (FTP); HyperText Transfer Protocol (HTTP); Secure HypertextTransfer Protocol (HTTPS), Secure Socket Layer (SSL), messagingprotocols (e.g., America Online (AOL) Instant Messenger (AIM),Application Exchange (APEX), ICQ, Internet Relay Chat (IRC), MicrosoftNetwork (MSN) Messenger Service, Presence and Instant Messaging Protocol(PRIM), Internet Engineering Task Force's (IETF's) Session InitiationProtocol (SIP), SIP for Instant Messaging and Presence LeveragingExtensions (SIMPLE), open XML-based Extensible Messaging and PresenceProtocol (XMPP) (i.e., Jabber or Open Mobile Alliance's (OMA's) InstantMessaging and Presence Service (IMPS)), Yahoo! Instant MessengerService, and/or the like. The information server provides results in theform of Web pages to Web browsers, and allows for the manipulatedgeneration of the Web pages through interaction with other programcomponents. After a Domain Name System (DNS) resolution portion of anHTTP request is resolved to a particular information server, theinformation server resolves requests for information at specifiedlocations on the W-CONNECTOR controller based on the remainder of theHTTP request. For example, a request such ashttp://123.124.125.126/myInformation.html might have the IP portion ofthe request “123.124.125.126” resolved by a DNS server to an informationserver at that IP address; that information server might in turn furtherparse the http request for the “/myInformation.html” portion of therequest and resolve it to a location in memory containing theinformation “myInformation.html.” Additionally, other informationserving protocols may be employed across various ports, e.g., FTPcommunications across port 21, and/or the like. An information servermay communicate to and/or with other components in a componentcollection, including itself, and/or facilities of the like. Mostfrequently, the information server communicates with the W-CONNECTORdatabase 3319, operating systems, other program components, userinterfaces, Web browsers, and/or the like.

Access to the W-CONNECTOR database may be achieved through a number ofdatabase bridge mechanisms such as through scripting languages asenumerated below (e.g., CGI) and through inter-application communicationchannels as enumerated below (e.g., CORBA, WebObjects, etc.). Any datarequests through a Web browser are parsed through the bridge mechanisminto appropriate grammars as required by the W-CONNECTOR. In oneembodiment, the information server would provide a Web form accessibleby a Web browser. Entries made into supplied fields in the Web form aretagged as having been entered into the particular fields, and parsed assuch. The entered terms are then passed along with the field tags, whichact to instruct the parser to generate queries directed to appropriatetables and/or fields. In one embodiment, the parser may generate queriesin standard SQL by instantiating a search string with the properjoin/select commands based on the tagged text entries, wherein theresulting command is provided over the bridge mechanism to theW-CONNECTOR as a query. Upon generating query results from the query,the results are passed over the bridge mechanism, and may be parsed forformatting and generation of a new results Web page by the bridgemechanism. Such a new results Web page is then provided to theinformation server, which may supply it to the requesting Web browser.

Also, an information server may contain, communicate, generate, obtain,and/or provide program component, system, user, and/or datacommunications, requests, and/or responses.

User Interface

Computer interfaces in some respects are similar to automobile operationinterfaces. Automobile operation interface elements such as steeringwheels, gearshifts, and speedometers facilitate the access, operation,and display of automobile resources, and status. Computer interactioninterface elements such as check boxes, cursors, menus, scrollers, andwindows (collectively and commonly referred to as widgets) similarlyfacilitate the access, capabilities, operation, and display of data andcomputer hardware and operating system resources, and status. Operationinterfaces are commonly called user interfaces. Graphical userinterfaces (GUIs) such as the Apple Macintosh Operating System's Aqua,IBM's OS/2, Microsoft's Windows2000/2003/3.1/95/98/CE/Millenium/NT/XP/Vista/7 (i.e., Aero), Unix'sX-Windows (e.g., which may include additional Unix graphic interfacelibraries and layers such as K Desktop Environment (KDE), mythTV and GNUNetwork Object Model Environment (GNOME)), web interface libraries(e.g., ActiveX, AJAX, (D)HTML, FLASH, Java, JavaScript, etc. interfacelibraries such as, but not limited to, Dojo, jQuery(UI), MooTools,Prototype, script.aculo.us, SWFObject, Yahoo! User Interface, any ofwhich may be used and) provide a baseline and means of accessing anddisplaying information graphically to users.

A user interface component 3317 is a stored program component that isexecuted by a CPU. The user interface may be a conventional graphic userinterface as provided by, with, and/or atop operating systems and/oroperating environments such as already discussed. The user interface mayallow for the display, execution, interaction, manipulation, and/oroperation of program components and/or system facilities through textualand/or graphical facilities. The user interface provides a facilitythrough which users may affect, interact, and/or operate a computersystem. A user interface may communicate to and/or with other componentsin a component collection, including itself, and/or facilities of thelike. Most frequently, the user interface communicates with operatingsystems, other program components, and/or the like. The user interfacemay contain, communicate, generate, obtain, and/or provide programcomponent, system, user, and/or data communications, requests, and/orresponses.

Web Browser

A Web browser component 3318 is a stored program component that isexecuted by a CPU. The Web browser may be a conventional hypertextviewing application such as Microsoft Internet Explorer or NetscapeNavigator. Secure Web browsing may be supplied with 128 bit (or greater)encryption by way of HTTPS, SSL, and/or the like. Web browsers allowingfor the execution of program components through facilities such asActiveX, AJAX, (D)HTML, FLASH, Java, JavaScript, web browser plug-inAPIs (e.g., FireFox, Safari Plug-in, and/or the like APIs), and/or thelike. Web browsers and like information access tools may be integratedinto PDAs, cellular telephones, and/or other mobile devices. A Webbrowser may communicate to and/or with other components in a componentcollection, including itself, and/or facilities of the like. Mostfrequently, the Web browser communicates with information servers,operating systems, integrated program components (e.g., plug-ins),and/or the like; e.g., it may contain, communicate, generate, obtain,and/or provide program component, system, user, and/or datacommunications, requests, and/or responses. Also, in place of a Webbrowser and information server, a combined application may be developedto perform similar operations of both. The combined application wouldsimilarly affect the obtaining and the provision of information tousers, user agents, and/or the like from the W-CONNECTOR enabled nodes.The combined application may be nugatory on systems employing standardWeb browsers.

Mail Server

A mail server component 3321 is a stored program component that isexecuted by a CPU 3303. The mail server may be a conventional Internetmail server such as, but not limited to sendmail, Microsoft Exchange,and/or the like. The mail server may allow for the execution of programcomponents through facilities such as ASP, ActiveX, (ANSI) (Objective-)C (++), C# and/or .NET, CGI scripts, Java, JavaScript, PERL, PHP, pipes,Python, WebObjects, and/or the like. The mail server may supportcommunications protocols such as, but not limited to: Internet messageaccess protocol (IMAP), Messaging Application Programming Interface(MAPI)/Microsoft Exchange, post office protocol (POP3), simple mailtransfer protocol (SMTP), and/or the like. The mail server can route,forward, and process incoming and outgoing mail messages that have beensent, relayed and/or otherwise traversing through and/or to theW-CONNECTOR.

Access to the W-CONNECTOR mail may be achieved through a number of APIsoffered by the individual Web server components and/or the operatingsystem.

Also, a mail server may contain, communicate, generate, obtain, and/orprovide program component, system, user, and/or data communications,requests, information, and/or responses.

Mail Client

A mail client component 3322 is a stored program component that isexecuted by a CPU 3303. The mail client may be a conventional mailviewing application such as Apple Mail, Microsoft Entourage, MicrosoftOutlook, Microsoft Outlook Express, Mozilla, Thunderbird, and/or thelike. Mail clients may support a number of transfer protocols, such as:IMAP, Microsoft Exchange, POP3, SMTP, and/or the like. A mail client maycommunicate to and/or with other components in a component collection,including itself, and/or facilities of the like. Most frequently, themail client communicates with mail servers, operating systems, othermail clients, and/or the like; e.g., it may contain, communicate,generate, obtain, and/or provide program component, system, user, and/ordata communications, requests, information, and/or responses. Generally,the mail client provides a facility to compose and transmit electronicmail messages.

Cryptographic Server

A cryptographic server component 3320 is a stored program component thatis executed by a CPU 3303, cryptographic processor 3326, cryptographicprocessor interface 3327, cryptographic processor device 3328, and/orthe like. Cryptographic processor interfaces may allow for expedition ofencryption and/or decryption requests by the cryptographic component;however, the cryptographic component, alternatively, may run on aconventional CPU. The cryptographic component allows for the encryptionand/or decryption of provided data. The cryptographic component allowsfor both symmetric and asymmetric (e.g., Pretty Good Protection (PGP))encryption and/or decryption. The cryptographic component may employcryptographic techniques such as, but not limited to: digitalcertificates (e.g., X.509 authentication framework), digital signatures,dual signatures, enveloping, password access protection, public keymanagement, and/or the like. The cryptographic component may facilitatenumerous (encryption and/or decryption) security protocols such as, butnot limited to: checksum, Data Encryption Standard (DES), EllipticalCurve Encryption (ECC), International Data Encryption Algorithm (IDEA),Message Digest 5 (MD5, which is a one way hash operation), passwords,Rivest Cipher (RC5), Rijndael, RSA (which is an Internet encryption andauthentication system that uses an algorithm developed in 1977 by RonRivest, Adi Shamir, and Leonard Adleman), Secure Hash Algorithm (SHA),Secure Socket Layer (SSL), Secure Hypertext Transfer Protocol (HTTPS),and/or the like. Employing such encryption security protocols, theW-CONNECTOR may encrypt all incoming and/or outgoing communications andmay serve as node within a virtual private network (VPN) with a widercommunications network. The cryptographic component facilitates theprocess of “security authorization” whereby access to a resource isinhibited by a security protocol wherein the cryptographic componenteffects authorized access to the secured resource. In addition, thecryptographic component may provide unique identifiers of content, e.g.,employing and MD5 hash to obtain a unique signature for an digital audiofile. A cryptographic component may communicate to and/or with othercomponents in a component collection, including itself, and/orfacilities of the like. The cryptographic component supports encryptionschemes allowing for the secure transmission of information across acommunications network to enable the W-CONNECTOR component to engage insecure transactions if so desired. The cryptographic componentfacilitates the secure accessing of resources on the W-CONNECTOR andfacilitates the access of secured resources on remote systems; i.e., itmay act as a client and/or server of secured resources. Most frequently,the cryptographic component communicates with information servers,operating systems, other program components, and/or the like. Thecryptographic component may contain, communicate, generate, obtain,and/or provide program component, system, user, and/or datacommunications, requests, and/or responses.

The W-CONNECTOR Database

The W-CONNECTOR database component 3319 may be embodied in a databaseand its stored data. The database is a stored program component, whichis executed by the CPU; the stored program component portion configuringthe CPU to process the stored data. The database may be a conventional,fault tolerant, relational, scalable, secure database such as Oracle orSybase. Relational databases are an extension of a flat file. Relationaldatabases consist of a series of related tables. The tables areinterconnected via a key field. Use of the key field allows thecombination of the tables by indexing against the key field; i.e., thekey fields act as dimensional pivot points for combining informationfrom various tables. Relationships generally identify links maintainedbetween tables by matching primary keys. Primary keys represent fieldsthat uniquely identify the rows of a table in a relational database.More precisely, they uniquely identify rows of a table on the “one” sideof a one-to-many relationship.

Alternatively, the W-CONNECTOR database may be implemented using variousstandard data-structures, such as an array, hash, (linked) list, struct,structured text file (e.g., XML), table, and/or the like. Suchdata-structures may be stored in memory and/or in (structured) files. Inanother alternative, an object-oriented database may be used, such asFrontier, ObjectStore, Poet, Zope, and/or the like. Object databases caninclude a number of object collections that are grouped and/or linkedtogether by common attributes; they may be related to other objectcollections by some common attributes. Object-oriented databases performsimilarly to relational databases with the exception that objects arenot just pieces of data but may have other types of capabilitiesencapsulated within a given object. If the W-CONNECTOR database isimplemented as a data-structure, the use of the W-CONNECTOR database3319 may be integrated into another component such as the W-CONNECTORcomponent 3335. Also, the database may be implemented as a mix of datastructures, objects, and relational structures. Databases may beconsolidated and/or distributed in countless variations through standarddata processing techniques. Portions of databases, e.g., tables, may beexported and/or imported and thus decentralized and/or integrated.

In one embodiment, the database component 3319 includes several tables3319 a-s. A user accounts 3319 a includes fields such as, but notlimited to: a user ID, merchant identifier, name, home address, workaddress, telephone number, email, merchant ID and/or the like. The usertable may support and/or track multiple entity accounts on aW-CONNECTOR. A merchant/service provider table 3319 b includes fieldssuch as, but not limited to: merchant ID, user ID, merchant name,merchant location, merchant address, merchant category code, merchantapi key, loyalty program ID and/or the like. A customer profile table3319 c includes fields such as, but not limited to: customer ID, userID, merchant ID, payment card ID, preferred payment type, wallet_id,access_privilege_id, preference_setting, address_book,shipping_carriers, loyalty_programs, social_network,transaction_history, browser_cookies, offers, coupons, alerts_feeds,alerts_triggers, other wallet_accound_id, and/or the like. An AccessPrivileges table 3319 d includes fields such as, but not limited to:access_privilege_id, axis_id, axis_name, role_id, role_name, entity_id,entity_name, context_id, context_name, action_id, action_name,info_type_id, info_type_name, action_template_id, wallet_id, customerID, transaction execution authorization status, confirmationauthorization status, billing authorization status, subscription paymentauthorization status, and/or the like. A payment card table 3319 eincludes fields such as, but not limited to: payment_card_id, user_id,identifier, brand, expiration date, spending limit, billing address,issuer, name, nick name, loyalty program ID, and/or the like. A billingagreement table 3319 f includes fields such as, but not limited to:customer_id, billing_id, billing_date, billing_amount_limit,confirmation_requirement, authentication_level,billing_authorization_status, and/or the like. A redemption table 3319 gincludes fields such as, but not limited to: customer_id,loyalty_program_id, coupon_id, redemption_date, redemption_time,redemption_amount, redemption_type, transaction_id, and/or the like. Awallet table 3319 h includes fields such as, but not limited to:wallet_id, user_id, prefill_id, billing_address, last_used_date,last_transaction_id, and/or the like. A card templates table 3319 iincludes fields such as, but not limited to: card_template_id,payment_card_id, card_type, file_card_front_location,file_card_back_location, card_front_template_location,card_back_template_location, template_type, and/or the like. A walletaccounts table 3319 j includes fields such as, but not limited to:wallet_account_id, wallet_id, account_number, issuer_name, issuer_id,issuer_routing_number, access_privilege_id and/or the like. An issuerstable 3319 k includes fields such as, but not limited to: issuer_id,payment_card_id, user_id, issuer_name, issuer_server_url, and/or thelike. An analytics table 33191 includes fields such as, but not limitedto: customer_id, merchant_id, transaction_volume, transaction_amount,transaction_type, transaction_id and/or the like. An staging table 3319m includes fields such as, but not limited to: staging_table_id, BID,CID, account_number, user_id, customer_id, merchant_id,issuer_identifier, and/or the like. and/or the like. A payments table3319 n includes fields such as, but not limited to: billing_id,billing_date, billing_amount, payment_card_id, authentication_level,and/or the like. An prefills table 33190 includes fields such as, butnot limited to: prefills_id, user_id, wallet_id, wallet_account_id,permissions, access rules, prefill_data, and/or the like. A transactiontable 3319 p includes fields such as, but not limited to:transaction_id, merchant_id, user_id, session_id, date, time,item_model, manufacturer, price, item_id, and/or the like. A contractstable 3319 q includes fields such as, but not limited to: contract_id,contract_type, merchant_id, user_id, contract_expiration_date,total_authorized_charges, monthly_authorized_charges, and/or the like.An Entities table 3319 r includes fields such as, but not limited to:entity_id, entity_category, issuer_id, merchant_id, consumer_id,consumer_bond, marketing_partner, loyalty_partner, shipping_carrier_id,social_network_id, wallet_provider_id, wallet_id, payment_network_id,other_(—)3^(rd)_party_id, and/or the like. An Action_tempalte table 3319s includes fields such as, but not limited to: action_template_id,action_id, source_id, target_id, requestor_id, context_id,access_privilege_id, role_id, context_id, action_id, info_type_id,and/or the like.

In one embodiment, the W-CONNECTOR database may interact with otherdatabase systems. For example, employing a distributed database system,queries and data access by search W-CONNECTOR component may treat thecombination of the W-CONNECTOR database, an integrated data securitylayer database as a single database entity.

In one embodiment, user programs may contain various user interfaceprimitives, which may serve to update the W-CONNECTOR. Also, variousaccounts may require custom database tables depending upon theenvironments and the types of clients the W-CONNECTOR may need to serve.It should be noted that any unique fields may be designated as a keyfield throughout. In an alternative embodiment, these tables have beendecentralized into their own databases and their respective databasecontrollers (i.e., individual database controllers for each of the abovetables). Employing standard data processing techniques, one may furtherdistribute the databases over several computer systemizations and/orstorage devices. Similarly, configurations of the decentralized databasecontrollers may be varied by consolidating and/or distributing thevarious database components 3319 a-q. The W-CONNECTOR may be configuredto keep track of various settings, inputs, and parameters via databasecontrollers.

The W-CONNECTOR database may communicate to and/or with other componentsin a component collection, including itself, and/or facilities of thelike. Most frequently, the W-CONNECTOR database communicates with theW-CONNECTOR component, other program components, and/or the like. Thedatabase may contain, retain, and provide information regarding othernodes and data.

The W-CONNECTORs

The W-CONNECTOR component 3335 is a stored program component that isexecuted by a CPU. In one embodiment, the W-CONNECTOR componentincorporates any and/or all combinations of the aspects of theW-CONNECTOR that was discussed in the previous figures. As such, theW-CONNECTOR affects accessing, obtaining and the provision ofinformation, services, transactions, and/or the like across variouscommunications networks.

The W-CONNECTOR transforms inputs such as user accounts 3319 a, issuers3319 k, prefills 2519 p, payment cards 2519 e and others using theaccount creation and management (ACM) component 3341; the Prefillcomponent 3342; Wallet Enrollment Component 3343; multi-directionalwallet connector (MDWC) component 334; Mobile Wallet Overlay (“MWO”)3345; Wallet Alert Interactions (“WAI)) component 3346; Wallet ViewPayment (“WVP”) component 3347; Wallet User Subscription (“WUS”)component 3348; Wallet Alert Settings (“WAS”) component 3349; WalletSubscription Alert (“WSA”) component 3350; Wallet Saves Alert Setting(“WSAS”) component 3351; Wallet Get Alert (“WGA”) component 3352; WalletClient Saves Alert (“WCSA”) component 3353; VAS Life Cycle (“VASLC”)component 3354; VAS Onboarding (“VASO”) component 3355; VAS Subscription(“VASS”) component 3356; VAS User Settings (“VASUS”) component 3357; VASActivity Notifications (“VASAN”) component 3358; into Wallet 2519 h,Wallet accounts 2519 j and Prefills 25190 outputs.

The W-CONNECTOR component enabling access of information between nodesmay be developed by employing standard development tools and languagessuch as, but not limited to: Apache components, Assembly, ActiveX,binary executables, (ANSI) (Objective-) C (++), C# and/or .NET, databaseadapters, CGI scripts, Java, JavaScript, mapping tools, procedural andobject oriented development tools, PERL, PHP, Python, shell scripts, SQLcommands, web application server extensions, web developmentenvironments and libraries (e.g., Microsoft's ActiveX; Adobe AIR, FLEX &FLASH; AJAX; (D)HTML; Dojo, Java; JavaScript; jQuery(UI); MooTools;Prototype; script.aculo.us; Simple Object Access Protocol (SOAP);SWFObject; Yahoo! User Interface; and/or the like), WebObjects, and/orthe like. In one embodiment, the W-CONNECTOR server employs acryptographic server to encrypt and decrypt communications. TheW-CONNECTOR component may communicate to and/or with other components ina component collection, including itself, and/or facilities of the like.Most frequently, the W-CONNECTOR component communicates with theW-CONNECTOR database, operating systems, other program components,and/or the like. The W-CONNECTOR may contain, communicate, generate,obtain, and/or provide program component, system, user, and/or datacommunications, requests, and/or responses.

Distributed W-CONNECTORs

The structure and/or operation of any of the W-CONNECTOR node controllercomponents may be combined, consolidated, and/or distributed in anynumber of ways to facilitate development and/or deployment. Similarly,the component collection may be combined in any number of ways tofacilitate deployment and/or development. To accomplish this, one mayintegrate the components into a common code base or in a facility thatcan dynamically load the components on demand in an integrated fashion.

The component collection may be consolidated and/or distributed incountless variations through standard data processing and/or developmenttechniques. Multiple instances of any one of the program components inthe program component collection may be instantiated on a single node,and/or across numerous nodes to improve performance throughload-balancing and/or data-processing techniques. Furthermore, singleinstances may also be distributed across multiple controllers and/orstorage devices; e.g., databases. All program component instances andcontrollers working in concert may do so through standard dataprocessing communication techniques.

The configuration of the W-CONNECTOR controller may depend on thecontext of system deployment. Factors such as, but not limited to, thebudget, capacity, location, and/or use of the underlying hardwareresources may affect deployment requirements and configuration.Regardless of if the configuration results in more consolidated and/orintegrated program components, results in a more distributed series ofprogram components, and/or results in some combination between aconsolidated and distributed configuration, data may be communicated,obtained, and/or provided. Instances of components consolidated into acommon code base from the program component collection may communicate,obtain, and/or provide data. This may be accomplished throughintra-application data processing communication techniques such as, butnot limited to: data referencing (e.g., pointers), internal messaging,object instance variable communication, shared memory space, variablepassing, and/or the like.

If component collection components are discrete, separate, and/orexternal to one another, then communicating, obtaining, and/or providingdata with and/or to other component components may be accomplishedthrough inter-application data processing communication techniques suchas, but not limited to: Application Program Interfaces (API) informationpassage; (distributed) Component Object Model ((D)COM), (Distributed)Object Linking and Embedding ((D)OLE), and/or the like), Common ObjectRequest Broker Architecture (CORBA), Jini local and remote applicationprogram interfaces, JavaScript Object Notation (JSON), Remote MethodInvocation (RMI), SOAP, process pipes, shared files, and/or the like.Messages sent between discrete component components forinter-application communication or within memory spaces of a singularcomponent for intra-application communication may be facilitated throughthe creation and parsing of a grammar. A grammar may be developed byusing development tools such as lex, yacc, XML, and/or the like, whichallow for grammar generation and parsing capabilities, which in turn mayform the basis of communication messages within and between components.

For example, a grammar may be arranged to recognize the tokens of anHTTP post command, e.g.:

  w3c -post http:// . . . Value1

where Value1 is discerned as being a parameter because “http://” is partof the grammar syntax, and what follows is considered part of the postvalue. Similarly, with such a grammar, a variable “Value1” may beinserted into an “http://” post command and then sent. The grammarsyntax itself may be presented as structured data that is interpretedand/or otherwise used to generate the parsing mechanism (e.g., a syntaxdescription text file as processed by lex, yacc, etc.). Also, once theparsing mechanism is generated and/or instantiated, it itself mayprocess and/or parse structured data such as, but not limited to:character (e.g., tab) delineated text, HTML, structured text streams,XML, and/or the like structured data. In another embodiment,inter-application data processing protocols themselves may haveintegrated and/or readily available parsers (e.g., JSON, SOAP, and/orlike parsers) that may be employed to parse (e.g., communications) data.Further, the parsing grammar may be used beyond message parsing, but mayalso be used to parse: databases, data collections, data stores,structured data, and/or the like. Again, the desired configuration maydepend upon the context, environment, and requirements of systemdeployment.

For example, in some implementations, the W-CONNECTOR controller may beexecuting a PHP script implementing a Secure Sockets Layer (“SSL”)socket server via the information sherver, which listens to incomingcommunications on a server port to which a client may send data, e.g.,data encoded in JSON format. Upon identifying an incoming communication,the PHP script may read the incoming message from the client device,parse the received JSON-encoded text data to extract information fromthe JSON-encoded text data into PHP script variables, and store the data(e.g., client identifying information, etc.) and/or extractedinformation in a relational database accessible using the StructuredQuery Language (“SQL”). An exemplary listing, written substantially inthe form of PHP/SQL commands, to accept JSON-encoded input data from aclient device via a SSL connection, parse the data to extract variables,and store the data to a database, is provided below:

  <?PHP header (‘Content-Type: text/plain’) ; // set ip address and portto listen to for incoming data $address = ‘192.168.0.100’ ; $port = 255;// create a server-side SSL socket, listen for/accept incomingcommunication $sock = socket_create (AF_INET, SOCK_STREAM, 0) ;socket_bind ($sock, $address, $port) or die (‘Could not bind toaddress’) ; socket_listen ($sock) ; $client = socket_accept ($sock) ; //read input data from client device in 1024 byte blocks until end ofmessage do {  $input = “”;  $input = socket_read ($client, 1024) ; $data .= $input; } while ($input != “”) ; // parse data to extractvariables $obj = json_decode ($data, true) ; // store input data in adatabase mysql_connect (“201.408.185.132”,$DBserver,$password) ; //access database server mysql_select (“CLIENT_DB.SQL”) ; // selectdatabase to append mysql_query (“INSERT INTO UserTable (transmission)VALUES ($data) ”) ; // add data to UserTable table in a CLIENT databasemysql_close (“CLIENT_DB.SQL”) ; // close connection to database ?>

Also, the following resources may be used to provide example embodimentsregarding SOAP parser implementation:

  http://www.xav.com/perl/site/lib/SOAP/Parser.htmlhttp://publib.boulder.ibm.com/infocenter/tivihelp/v2r1/index.jsp?topic=/com.ibm .IBMDI.doc/referenceguide295.htm

and other parser implementations:

http://publib.boulder.ibm.com/infocenter/tivihelp/v2r1/  index.jsp?topic=/com.ibm .IBMDI.doc/referenceguide259.htm

all of which are hereby expressly incorporated by reference.

In order to address various issues and advance the art, the entirety ofthis application for MULTI-DIRECTIONAL WALLET CONNECTOR APPARATUSES,METHODS AND SYSTEMS (including the Cover Page, Title, Headings, Field,Background, Summary, Brief Description of the Drawings, DetailedDescription, Claims, Abstract, Figures, Appendices, and otherwise)shows, by way of illustration, various embodiments in which the claimedinnovations may be practiced. The advantages and features of theapplication are of a representative sample of embodiments only, and arenot exhaustive and/or exclusive. They are presented only to assist inunderstanding and teach the claimed principles. It should be understoodthat they are not representative of all claimed innovations. As such,certain aspects of the disclosure have not been discussed herein. Thatalternate embodiments may not have been presented for a specific portionof the innovations or that further undescribed alternate embodiments maybe available for a portion is not to be considered a disclaimer of thosealternate embodiments. It may be appreciated that many of thoseundescribed embodiments incorporate the same principles of theinnovations and others are equivalent. Thus, it is to be understood thatother embodiments may be utilized and functional, logical, operational,organizational, structural and/or topological modifications may be madewithout departing from the scope and/or spirit of the disclosure. Assuch, all examples and/or embodiments are deemed to be non-limitingthroughout this disclosure. Also, no inference should be drawn regardingthose embodiments discussed herein relative to those not discussedherein other than it is as such for purposes of reducing space andrepetition. For instance, it is to be understood that the logical and/ortopological structure of any combination of any program components (acomponent collection), other components and/or any present feature setsas described in the figures and/or throughout are not limited to a fixedoperating order and/or arrangement, but rather, any disclosed order isexemplary and all equivalents, regardless of order, are contemplated bythe disclosure. Furthermore, it is to be understood that such featuresare not limited to serial execution, but rather, any number of threads,processes, services, servers, and/or the like that may executeasynchronously, concurrently, in parallel, simultaneously,synchronously, and/or the like are contemplated by the disclosure. Assuch, some of these features may be mutually contradictory, in that theycannot be simultaneously present in a single embodiment. Similarly, somefeatures are applicable to one aspect of the innovations, andinapplicable to others. In addition, the disclosure includes otherinnovations not presently claimed. Applicant reserves all rights inthose presently unclaimed innovations including the right to claim suchinnovations, file additional applications, continuations, continuationsin part, divisions, and/or the like thereof. As such, it should beunderstood that advantages, embodiments, examples, functional, features,logical, operational, organizational, structural, topological, and/orother aspects of the disclosure are not to be considered limitations onthe disclosure as defined by the claims or limitations on equivalents tothe claims. It is to be understood that, depending on the particularneeds and/or characteristics of a W-CONNECTOR individual and/orenterprise user, database configuration and/or relational model, datatype, data transmission and/or network framework, syntax structure,and/or the like, various embodiments of the W-CONNECTOR, may beimplemented that enable a great deal of flexibility and customization.For example, aspects of the W-CONNECTOR may be adapted for transactionliability determination. While various embodiments and discussions ofthe W-CONNECTOR have been directed to bi-direction federation ofcredentials and other information, however, it is to be understood thatthe embodiments described herein may be readily configured and/orcustomized for a wide variety of other applications and/orimplementations.

1. A multi-directional wallet service connection processor implementedmethod comprising: receiving, via a processor, a wallet serviceconnection request; determining at least one entity to be involved infulfilling the wallet service connection request, including any of asource entity and a target entity; determining a wallet serviceconnection source action and a wallet service connection target action;determining a wallet service connection privilege associated with the atleast one entity and the wallet service connection source action and thewallet service connection target action; performing the wallet serviceconnection source action on the source entity; providing a result of theperformed wallet service connection source action on the source entityto the target entity for execution of a complimentary wallet serviceconnection target action on the target entity; and obtaining a result ofthe performed complimentary wallet service connection target action. 2.The method of claim 1, wherein the at least one entity include arequestor entity.
 3. The method of claim 2, wherein any of the sourceentity, the target entity, and the requestor entity include anidentifier.
 4. The method of claim 1, wherein the at least one entityinclude any of an issuer, a merchant, a consumer, a payment network, adigital wallet provider, a marketing partner, a loyalty partner, ashipping partner, a social network provider.
 5. The method of claim 1,further comprising: obtaining a context and an information type whereinthe context and the information type are used to select the walletservice connection privilege.
 6. The method of claim 1, wherein thewallet service connection source action is to retrieve a walletmanagement user interface specific to the source entity, and the walletservice connection target action is to map the retrieved walletmanagement user interface into a native wallet user interface andgenerate a native wallet user interface widget for extension.
 7. Amulti-directional wallet service connection system, comprising: aprocessor; and a memory disposed in communication with the processor andstoring processor-issuable instructions to: receive, via a processor, awallet service connection request; determine at least one entity to beinvolved in fulfilling the wallet service connection request, includingany of a source entity and a target entity; determine a wallet serviceconnection source action and a wallet service connection target action;determine a wallet service connection privilege associated with the atleast one entity and the wallet service connection source action and thewallet service connection target action; perform the wallet serviceconnection source action on the source entity; provide a result of theperformed wallet service connection source action on the source entityto the target entity for execution of a complimentary wallet serviceconnection target action on the target entity; and obtain a result ofthe performed complimentary wallet service connection target action. 8.The system of claim 7, wherein the at least one entity include arequestor entity.
 9. The system of claim 8, wherein any of the sourceentity, the target entity, and the requestor entity include anidentifier.
 10. The system of claim 7, wherein the at least one entityinclude any of an issuer, a merchant, a consumer, a payment network, adigital wallet provider, a marketing partner, a loyalty partner, ashipping partner, a social network provider.
 11. The system of claim 7,further comprising: obtain a context and an information type wherein thecontext and the information type are used to select the wallet serviceconnection privilege.
 12. The system of claim 7, wherein the walletservice connection source action is to retrieve a wallet management userinterface specific to the source entity, and the wallet serviceconnection target action is to map the retrieved wallet management userinterface into a native wallet user interface and generate a nativewallet user interface widget for extension.
 13. A processor-readabletangible medium storing processor-issuable multi-directional walletservice connection instructions to: receive, via a processor, a walletservice connection request; determine at least one entity to be involvedin fulfilling the wallet service connection request, including any of asource entity and a target entity; determine a wallet service connectionsource action and a wallet service connection target action; determine awallet service connection privilege associated with the at least oneentity and the wallet service connection source action and the walletservice connection target action; perform the wallet service connectionsource action on the source entity; provide a result of the performedwallet service connection source action on the source entity to thetarget entity for execution of a complimentary wallet service connectiontarget action on the target entity; and obtain a result of the performedcomplimentary wallet service connection target action.
 14. The medium ofclaim 13, wherein the at least one entity include a requestor entity.15. The medium of claim 14, wherein any of the source entity, the targetentity, and the requestor entity include an identifier.
 16. The mediumof claim 13, wherein the at least one entity include any of an issuer, amerchant, a consumer, a payment network, a digital wallet provider, amarketing partner, a loyalty partner, a shipping partner, a socialnetwork provider.
 17. The medium of claim 13, further comprising: obtaina context and an information type wherein the context and theinformation type are used to select the wallet service connectionprivilege.
 18. The medium of claim 13, wherein the wallet serviceconnection source action is to retrieve a wallet management userinterface specific to the source entity, and the wallet serviceconnection target action is to map the retrieved wallet management userinterface into a native wallet user interface and generate a nativewallet user interface widget for extension.
 19. A multi-directionalwallet service connection apparatus, comprising: a processor; and amemory disposed in communication with the processor and storingprocessor-issuable instructions to: receive, via a processor, a walletservice connection request; determine at least one entity to be involvedin fulfilling the wallet service connection request, including any of asource entity and a target entity; determine a wallet service connectionsource action and a wallet service connection target action; determine awallet service connection privilege associated with the at least oneentity and the wallet service connection source action and the walletservice connection target action; perform the wallet service connectionsource action on the source entity; provide a result of the performedwallet service connection source action on the source entity to thetarget entity for execution of a complimentary wallet service connectiontarget action on the target entity; and obtain a result of the performedcomplimentary wallet service connection target action.
 20. The apparatusof claim 19, wherein the at least one entity include a requestor entity.21. The apparatus of claim 20, wherein any of the source entity, thetarget entity, and the requestor entity include an identifier.
 22. Theapparatus of claim 19, wherein the at least one entity include any of anissuer, a merchant, a consumer, a payment network, a digital walletprovider, a marketing partner, a loyalty partner, a shipping partner, asocial network provider.
 23. The apparatus of claim 19, furthercomprising: obtain a context and an information type wherein the contextand the information type are used to select the wallet serviceconnection privilege.
 24. The apparatus of claim 19, wherein the walletservice connection source action is to retrieve a wallet management userinterface specific to the source entity, and the wallet serviceconnection target action is to map the retrieved wallet management userinterface into a native wallet user interface and generate a nativewallet user interface widget for extension.
 25. A mobile wallettransaction user interface processor-implemented method, comprising:receiving a mobile wallet transaction checkout request and a mobilewallet identifier; determining a wallet transaction preferred paymentmethod; generating a mobile wallet transaction overlay with thedetermined wallet transaction preferred payment method; and providingthe mobile wallet transaction overlay.
 26. A third-party value addedwallet service processor-implemented method, comprising: receiving athird-party value added user interface integration request; determininga digital wallet account identifier; determining an integrationprivilege associated with a third-party and a digital wallet account;wherein the digital wallet account is associated with the digital walletaccount identifier; and when the integration privilege is permitted,integrating the third-party value added user interface with a digitalwallet account user interface.
 27. A user-merchant reference linkingprocessor-implemented method, comprising: receiving a wallet credentiallog-in request; creating a user-merchant relationship identifier,wherein the user-merchant relationship identifier is merchant specific;storing user-merchant actions and associating the user-merchant actionswith the user-merchant relationship identifier; and associatingnon-merchant specific user history with a user history identifier,wherein the user history identifier is related to the user-merchantrelationship identifier.
 28. The method of claim 27, wherein theuser-merchant actions include transaction history, preferences, andpermissions.
 29. The method of claim 27, further comprising: receiving awallet-merchant connection request; providing the user-merchant actionsand the non-merchant specific user history in response to thewallet-merchant connection request.
 30. A user-merchant referencelinking system, comprising: a processor; and a memory disposed incommunication with the processor and storing processor-issuableinstructions to: receive a wallet credential log-in request; create auser-merchant relationship identifier, wherein the user-merchantrelationship identifier is merchant specific; store user-merchantactions and associate the user-merchant actions with the user-merchantrelationship identifier; and associate non-merchant specific userhistory with a user history identifier, wherein the user historyidentifier is related to the user-merchant relationship identifier. 31.The system of claim 30, wherein the user-merchant actions includetransaction history, preferences, and permissions.
 32. The system ofclaim 30, further comprising: receive a wallet-merchant connectionrequest; provide the user-merchant actions and the non-merchant specificuser history in response to the wallet-merchant connection request. 33.A processor-readable tangible medium storing processor-issuableuser-merchant reference linking instructions to: receive a walletcredential log-in request; create a user-merchant relationshipidentifier, wherein the user-merchant relationship identifier ismerchant specific; store user-merchant actions and associate theuser-merchant actions with the user-merchant relationship identifier;and associate non-merchant specific user history with a user historyidentifier, wherein the user history identifier is related to theuser-merchant relationship identifier.
 34. The medium of claim 33,wherein the user-merchant actions include transaction history,preferences, and permissions.
 35. The medium of claim 33, furthercomprising: receive a wallet-merchant connection request; provide theuser-merchant actions and the non-merchant specific user history inresponse to the wallet-merchant connection request.